Lucene search
K

21 matches found

CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.42 views

CVE-2022-0216 affecting package qemu-kvm 4.2.0-48

CVE-2022-0216 affecting package qemu-kvm 4.2.0-48. No patch is available currently...

4.4CVSS7.5AI score0.00405EPSS
Exploits1
OpenVAS
OpenVAS
added 2024/05/07 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2024:1395-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS7AI score0.01606EPSS
Exploits2References8
OSV
OSV
added 2024/04/23 9:16 a.m.7 views

SUSE-SU-2024:1395-1 Security update for qemu

This update for qemu fixes the following issues: - CVE-2021-3750: Fixed DMA reentrancy issue that could lead to use-after-free bsc1190011 - CVE-2022-0216: Fixed use-after-free in lsidomsgout function in hw/scsi/lsi53c895a.c bsc1198038 - CVE-2023-0330: Fixed DMA reentrancy issue that could lead to...

8.2CVSS8.1AI score0.01606EPSS
Exploits2References11
OpenVAS
OpenVAS
added 2023/06/05 12:0 a.m.40 views

SUSE: Security Advisory (SUSE-SU-2023:2358-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS6.9AI score0.00834EPSS
Exploits5References10
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2023:0761-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.00834EPSS
Exploits8References16
OSV
OSV
added 2023/03/21 8:54 a.m.13 views

SUSE-SU-2023:0840-1 Security update for qemu

This update for qemu fixes the following issues: - CVE-2022-4144: Fixed unsafe address translation can lead to out-of-bounds read in qxlphys2virt bsc1205808. - CVE-2021-3507: Fixed heap buffer overflow in DMA read data transfers in fdc bsc1185000. - CVE-2020-14394: Fixed infinite loop in...

8.8CVSS6.5AI score0.00643EPSS
Exploits5References14
OpenVAS
OpenVAS
added 2023/03/15 12:0 a.m.29 views

Debian: Security Advisory (DLA-3362-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.5AI score0.0183EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2023/01/04 12:0 a.m.39 views

EulerOS Virtualization 2.10.0 : qemu (EulerOS-SA-2022-2925)

According to the versions of the qemu packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Blo...

8.2CVSS7.3AI score0.00643EPSS
Exploits5References4
OpenVAS
OpenVAS
added 2022/12/30 12:0 a.m.36 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2022-2951)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS6.7AI score0.00643EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2022/12/30 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2022-2925)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS6.7AI score0.00643EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2022/12/13 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-5772-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS7.2AI score0.02904EPSS
Exploits3References2
Ubuntu
Ubuntu
added 2022/12/12 6:51 a.m.70 views

USN-5772-1: QEMU vulnerabilities

It was discovered that QEMU incorrectly handled bulk transfers from SPICE clients. A remote attacker could use this issue to cause QEMU to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. CVE-2021-3682 It...

8.5CVSS7.1AI score0.02904EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2022/11/09 12:0 a.m.31 views

Oracle Linux 8 : kvm_utils (ELSA-2022-9986)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-9986 advisory. - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 Tenable has extracted the preceding description block directly from the Oracl...

5.8CVSS6.4AI score0.01916EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/10/20 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2022:3660-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.5AI score0.00636EPSS
Exploits2References2
OSV
OSV
added 2022/10/19 12:0 p.m.6 views

SUSE-SU-2022:3660-1 Security update for qemu

This update for qemu fixes the following issues: - CVE-2022-0216: Fixed a use after free issue found in hw/scsi/lsi53c895a.c. bsc1198038 - CVE-2022-35414: Fixed an uninitialized read during address translation that leads to a crash. bsc1201367...

8.8CVSS6.4AI score0.00636EPSS
Exploits2References6
OpenVAS
OpenVAS
added 2022/10/17 12:0 a.m.39 views

SUSE: Security Advisory (SUSE-SU-2022:3594-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.2AI score0.00834EPSS
Exploits5References9
Tenable Nessus
Tenable Nessus
added 2022/10/14 12:0 a.m.72 views

Oracle Linux 8 : kvm_utils2 (ELSA-2022-9862)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9862 advisory. - A use-after-free vulnerability was found in the LSI53C895A SCSI Host Bus Adapter emulation of QEMU. The flaw occurs while processing repeated message...

8.2CVSS7.4AI score0.02701EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2022/10/11 12:0 a.m.48 views

Oracle Linux 9 : qemu-kvm (ELSA-2022-9869)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9869 advisory. - A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursoralloc function can lead to the allocation of a small...

8.2CVSS7.4AI score0.02701EPSS
Exploits3References5
OSV
OSV
added 2022/09/09 11:4 a.m.5 views

OESA-2022-1907 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. QEMU has two operating modes: Full system emulation. In this mode, QEMU emulates a full system for example a PC, including one or several processors and various peripherals. It can be used to launch...

4.4CVSS6.7AI score0.00405EPSS
Exploits1References2
OSV
OSV
added 2022/08/26 6:15 p.m.29 views

CVE-2022-0216

A use-after-free vulnerability was found in the LSI53C895A SCSI Host Bus Adapter emulation of QEMU. The flaw occurs while processing repeated messages to cancel the current SCSI request via the lsidomsgout function. This flaw allows a malicious privileged user within the guest to crash the QEMU...

4.4CVSS4.4AI score0.00405EPSS
Exploits1References6
Rows per page
Query Builder