Lucene search
K

30 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2015-4037

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The slirpsmb function in net/slirp.c in QEMU 2.3.0 and earlier creates temporary files with predictable names, which allows local users to cause a denial of...

1.9CVSS7.4AI score0.00372EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2015:1152-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.6AI score0.15275EPSS
Exploits7References46
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2016:0658-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7AI score0.0773EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2015:1952-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.0361EPSS
Exploits2References11
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2015:1894-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.0361EPSS
Exploits2References20
Tenable Nessus
Tenable Nessus
added 2020/04/15 12:0 a.m.239 views

EulerOS 2.0 SP3 : qemu-kvm (EulerOS-SA-2020-1430)

According to the versions of the qemu-kvm packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In libslirp 4.1.0, as used in QEMU 4.2.0, tcpsubr.c misuses snprintf return values, leading to a buffer overflow in later code.CVE-2020-8608 -...

10CVSS8.3AI score0.16658EPSS
Exploits8References67
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 10:33 p.m.56 views

Security Bulletin: Multiple vulnerabilities in qemu-kvm affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance

Summary Multiple vulnerabilities in qemu-kvm affect IBM SmartCloud Provisioning V2.1 for IBM Software Virtual Appliance. Please note product software support discontinuance as per IBM Withdrawal Announcement 916-016. For withdrawal announcement information details see the Reference section below...

7.5CVSS1.2AI score0.0361EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/03/07 12:0 a.m.50 views

SUSE SLES10 Security Update : Xen (SUSE-SU-2016:0658-1)

Xen was updated to fix the following vulnerabilities : CVE-2014-0222: Qcow1 L2 table size integer overflows bsc877642 CVE-2015-4037: Insecure temporary file use in /net/slirp.c bsc932267 CVE-2015-5239: Integer overflow in vncclientread and protocolclientmsg bsc944463 CVE-2015-7504: Heap buffer...

10CVSS6.8AI score0.0773EPSS
Exploits5References41
OpenVAS
OpenVAS
added 2015/11/18 12:0 a.m.33 views

openSUSE: Security Advisory for xen (openSUSE-SU-2015:2003-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS6.3AI score0.00436EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/11/18 12:0 a.m.37 views

openSUSE Security Update : xen (openSUSE-2015-750)

xen was updated to fix 12 security issues. These security issues were fixed : - CVE-2015-7972: Populate-on-demand balloon size inaccuracy can crash guests bsc951845. - CVE-2015-7969: Leak of main per-domain vcpu pointer array DoS bsc950703. - CVE-2015-7969: Leak of per-domain profiling-related vc...

9.3CVSS6.9AI score0.13288EPSS
Exploits2References35
OPENSUSE Linux
OPENSUSE Linux
added 2015/11/17 11:10 a.m.36 views

Security update for xen (important)

xen was updated to fix 12 security issues. These security issues were fixed: - CVE-2015-7972: Populate-on-demand balloon size inaccuracy can crash guests bsc951845. - CVE-2015-7969: Leak of main per-domain vcpu pointer array DoS bsc950703. - CVE-2015-7969: Leak of per-domain profiling-related vcp...

7.5CVSS0.8AI score0.13288EPSS
Exploits2References22
Tenable Nessus
Tenable Nessus
added 2015/11/13 12:0 a.m.33 views

openSUSE Security Update : xen (openSUSE-2015-729)

xen was updated to fix 13 security issues. These security issues were fixed : - CVE-2015-7972: Populate-on-demand balloon size inaccuracy can crash guests bsc951845. - CVE-2015-7969: Leak of main per-domain vcpu pointer array DoS bsc950703. - CVE-2015-7969: Leak of per-domain profiling-related vc...

9.3CVSS7AI score0.13288EPSS
Exploits2References26
OPENSUSE Linux
OPENSUSE Linux
added 2015/11/12 12:10 p.m.45 views

Security update for xen (important)

xen was updated to fix 13 security issues. These security issues were fixed: - CVE-2015-7972: Populate-on-demand balloon size inaccuracy can crash guests bsc951845. - CVE-2015-7969: Leak of main per-domain vcpu pointer array DoS bsc950703. - CVE-2015-7969: Leak of per-domain profiling-related vcp...

7.5CVSS0.4AI score0.13288EPSS
Exploits2References14
OpenVAS
OpenVAS
added 2015/11/05 12:0 a.m.34 views

SUSE: Security Advisory for xen (SUSE-SU-2015:1908-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.0361EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2015/11/05 12:0 a.m.32 views

SUSE SLED11 / SLES11 Security Update : xen (SUSE-SU-2015:1894-1)

xen was updated to version 4.4.3 to fix nine security issues. These security issues were fixed : - CVE-2015-4037: The slirpsmb function in net/slirp.c created temporary files with predictable names, which allowed local users to cause a denial of service instantiation failure by creating...

7.5CVSS6.5AI score0.0361EPSS
Exploits2References34
Tenable Nessus
Tenable Nessus
added 2015/11/05 12:0 a.m.30 views

SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2015:1908-1)

xen was updated to version 4.4.3 to fix nine security issues. These security issues were fixed : - CVE-2015-4037: The slirpsmb function in net/slirp.c created temporary files with predictable names, which allowed local users to cause a denial of service instantiation failure by creating...

7.5CVSS6.5AI score0.0361EPSS
Exploits2References33
OSV
OSV
added 2015/10/29 4:4 p.m.9 views

SUSE-SU-2015:1952-1 Security update for xen

xen was updated to fix eight security issues. These security issues were fixed: - CVE-2015-4037: The slirpsmb function in net/slirp.c created temporary files with predictable names, which allowed local users to cause a denial of service instantiation failure by creating /tmp/qemu-smb.- files befo...

7.5CVSS6.3AI score0.0361EPSS
Exploits2References16
OpenVAS
OpenVAS
added 2015/10/15 12:0 a.m.40 views

SUSE: Security Advisory for qemu (SUSE-SU-2015:1519-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.09668EPSS
Exploits0References1
CVE
CVE
added 2015/08/26 7:0 p.m.114 views

CVE-2015-4037

The CVE refers to CVE-2015-4037 in QEMU (affecting net/slirp.c: the slirp_smb function). It describes a local-denial-of-service: an attacker can create temporary files with predictable names (for example /tmp/qemu-smb.- ), which can cause instantiation failure when QEMU 2.3.0 and earlier run. Thi...

1.9CVSS5.9AI score0.00372EPSS
Exploits0References14Affected Software1
Debian CVE
Debian CVE
added 2015/08/26 7:0 p.m.31 views

CVE-2015-4037

The slirpsmb function in net/slirp.c in QEMU 2.3.0 and earlier creates temporary files with predictable names, which allows local users to cause a denial of service instantiation failure by creating /tmp/qemu-smb.- files before the program...

1.9CVSS6AI score0.00372EPSS
Exploits0
Rows per page
Query Builder