Lucene search
K

30 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2015-1779

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The VNC websocket frame decoder in QEMU allows remote attackers to cause a denial of service memory and CPU consumption via a large 1 websocket payload or 2 HTT...

8.6CVSS7.2AI score0.07393EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2015:0870-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.6AI score0.15275EPSS
Exploits7References46
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2021:14704-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7AI score0.07393EPSS
Exploits3References17
Tenable Nessus
Tenable Nessus
added 2018/09/06 12:0 a.m.33 views

RHEL 7 : qemu-kvm-rhev (RHSA-2015:1931)

Updated qemu-kvm-rhev packages that fix one security issue are now available for Red Hat Enterprise Virtualization Hypervisor 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severit...

8.6CVSS7.6AI score0.07393EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 1:28 a.m.31 views

Security Bulletin: PowerKVM is affected by a Qemu vulnerability (CVE-2015-1779)

Summary PowerKVM is vulnerable to Qemu vulnerability CVE-2015-1779. Vulnerability Details CVEID: CVE-2015-1779 DESCRIPTION: QEMU is vulnerable to a denial of service, caused by an error when processing incoming frames by the websocket frame decoder. A remote attacker from within the local network...

8.6CVSS0.07393EPSS
Exploits0Affected Software1
OPENSUSE Linux
OPENSUSE Linux
added 2016/04/08 7:10 p.m.53 views

Security update for xen (important)

xen was updated to version 4.4.4 to fix 33 security issues. These security issues were fixed: - CVE-2016-2392: NULL pointer dereference in remote NDIS control message handling bsc967012. - CVE-2015-5239: Integer overflow in vncclientread and protocolclientmsg bsc944463. - CVE-2016-2270: Xen allow...

10CVSS4.7AI score0.0773EPSS
Exploits2References33
Tenable Nessus
Tenable Nessus
added 2016/04/07 12:0 a.m.37 views

SUSE SLED11 / SLES11 Security Update : xen (SUSE-SU-2016:0955-1)

xen was updated to fix 47 security issues. These security issues were fixed : - CVE-2013-4527: Buffer overflow in hw/timer/hpet.c might have allowed remote attackers to execute arbitrary code via vectors related to the number of timers bnc864673. - CVE-2013-4529: Buffer overflow in hw/pci/pcieaer...

9CVSS7.8AI score0.0773EPSS
Exploits4References144
CVE
CVE
added 2016/01/12 7:0 p.m.140 views

CVE-2015-1779

CVE-2015-1779 affects QEMU with the VNC websocket frame decoder. The issue allows a remote attacker to cause a denial of service by sending oversized websocket payloads or HTTP headers, exhausting CPU and memory. Impact is observed when an attacker accesses a guest’s VNC console over the network....

8.6CVSS7.9AI score0.07393EPSS
Exploits0References17Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/10/28 12:0 a.m.37 views

Oracle Linux 7 : qemu-kvm (ELSA-2015-1943)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2015-1943 advisory. - kvm-CVE-2015-1779-incrementally-decode-websocket-frames.patch bz1205050 - kvm-CVE-2015-1779-limit-size-of-HTTP-headers-from-websoc.patch bz1205050 Tenable has...

8.6CVSS7.7AI score0.07393EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/10/28 12:0 a.m.35 views

RHEL 7 : qemu-kvm (RHSA-2015:1943)

Updated qemu-kvm packages that fix one security issue are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fr...

8.6CVSS7.5AI score0.07393EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/10/28 12:0 a.m.23 views

Scientific Linux Security Update : qemu-kvm on SL7.x x86_64 (20151027)

It was found that the QEMU's websocket frame decoder processed incoming frames without limiting resources used to process the header and the payload. An attacker able to access a guest's VNC console could use this flaw to trigger a denial of service on the host by exhausting all available memory...

8.6CVSS7.6AI score0.07393EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2015/10/27 8:50 a.m.44 views

Moderate: Red Hat Security Advisory: qemu-kvm security update

Updated qemu-kvm packages that fix one security issue are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fr...

8.6CVSS7.1AI score0.07393EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2015/10/27 12:0 a.m.37 views

qemu-kvm security update

1.5.3-86.el71.8 - kvm-qtest-ide-test-disable-flush-test.patch bz1273098 - Resolves: bz1273098 qemu-kvm build failure race condition in tests/ide-test 1.5.3-86.el71.7 - kvm-CVE-2015-1779-incrementally-decode-websocket-frames.patch bz1205050 -...

7.8CVSS1.9AI score0.07393EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2015/10/26 9:22 p.m.36 views

Moderate: Red Hat Security Advisory: qemu-kvm-rhev security update

Updated qemu-kvm-rhev packages that fix one security issue are now available for Red Hat Enterprise Virtualization Hypervisor 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severit...

8.6CVSS7.1AI score0.07393EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/10/13 12:0 a.m.27 views

SUSE: Security Advisory for kvm (SUSE-SU-2015:0870-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.5AI score0.07393EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2015/06/09 12:0 a.m.28 views

Fedora Update for qemu FEDORA-2015-8249

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.9AI score0.15275EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/06/09 12:0 a.m.29 views

Ubuntu: Security Advisory (USN-2608-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.8AI score0.15275EPSS
Exploits1References2
securityvulns
securityvulns
added 2015/05/17 12:0 a.m.72 views

[USN-2608-1] QEMU vulnerabilities

========================================================================== Ubuntu Security Notice USN-2608-1 May 13, 2015 qemu, qemu-kvm vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives...

7.8CVSS0.4AI score0.15275EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2015/05/14 12:0 a.m.33 views

SuSE 11.3 Security Update : kvm (SAT Patch Number 10645)

This update for KVM fixes an issue in the virtio-blk driver which could result in incorrectly setting its WCE configuration. Under some circumstances, this misconfiguration could cause severe file system corruption, because cache flushes were not generated as they ought to have been. The update...

8.6CVSS7.6AI score0.07393EPSS
Exploits0References4
Debian
Debian
added 2015/05/13 4:7 p.m.55 views

[SECURITY] [DSA 3259-1] qemu security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3259-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 13, 2015 http://www.debian.org/security/faq -...

8.6CVSS10AI score0.15275EPSS
Exploits1
Rows per page
Query Builder