5 matches found
Gentoo Security Advisory GLSA 201408-17
Gentoo Linux Local Security Checks GLSA 201408-17 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
Updated qemu package fixes security vulnerability
Sibiao Luo discovered that QEMU incorrectly handled device hot-unplugging. A local user could possibly use this flaw to cause a denial of service CVE-2013-4377. Additionally, qemu has been updated to 1.6.2, fixing several other bugs...
Ubuntu: Security Advisory (USN-2092-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-2092-1: QEMU vulnerabilities
Asias He discovered that QEMU incorrectly handled SCSI controllers with more than 256 attached devices. A local user could possibly use this flaw to elevate privileges. CVE-2013-4344 It was discovered that QEMU incorrectly handled Xen disks. A local guest could possibly use this flaw to consume...
CVE-2013-4377
CVE-2013-4377 is a use-after-free in QEMU’s virtio-pci implementation (affecting QEMU 1.4.0–1.6.0). A local user could trigger a daemon crash by hot-unplugging a virtio device. The vulnerability is documented across multiple advisories (e.g., Mageia MGASA-2014-0060) which note that upgrading QEMU...