Lucene search
K

15 matches found

OSV
OSV
added 2015/11/06 9:59 p.m.3 views

CVE-2015-5225

Buffer overflow in the vncrefreshserversurface function in the VNC display driver in QEMU before 2.4.0.1 allows guest users to cause a denial of service heap memory corruption and process crash or possibly execute arbitrary code on the host via unspecified vectors, related to refreshing the serve...

7.4AI score
Exploits0References13
CVE
CVE
added 2015/11/06 9:0 p.m.104 views

CVE-2015-5225

CVE-2015-5225 : In QEMU, a heap-based buffer overflow arises in the vnc_refresh_server_surface() function of the VNC display driver. A local attacker within the guest could exploit this to cause heap memory corruption and host process crash, or possibly execute arbitrary code on the host. The pro...

7.2CVSS7.3AI score0.00533EPSS
Exploits0References12Affected Software1
Debian CVE
Debian CVE
added 2015/11/06 9:0 p.m.34 views

CVE-2015-5225

Buffer overflow in the vncrefreshserversurface function in the VNC display driver in QEMU before 2.4.0.1 allows guest users to cause a denial of service heap memory corruption and process crash or possibly execute arbitrary code on the host via unspecified vectors, related to refreshing the serve...

7.2CVSS7.7AI score0.00533EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2015/09/24 2:21 p.m.37 views

Important: Red Hat Security Advisory: qemu-kvm-rhev security update

Updated qemu-kvm-rhev packages that fix one security issue are now available for Red Hat Enterprise Virtualization Hypervisor 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severi...

7.2CVSS7.5AI score0.00533EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/09/19 12:0 a.m.42 views

Fedora Update for qemu FEDORA-2015-15364

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS6.8AI score0.00533EPSS
Exploits0References2
Mageia
Mageia
added 2015/09/15 2:55 p.m.62 views

Updated qemu packages fix security vulnerabilities

Updated qemu packages fix security vulnerabilities: Qemu emulator built with the RTL8139 emulation support is vulnerable to an information leakage flaw. It could occur while processing network packets under RTL8139 controller's C+ mode of operation. A guest user could use this flaw to read...

9.3CVSS7.8AI score0.13288EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/09/14 4:22 a.m.39 views

Important: Red Hat Security Advisory: qemu-kvm-rhev security update

Updated qemu-kvm-rhev packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 5.0, 6.0 and 7.0, for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System...

7.2CVSS7.5AI score0.00533EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/09/04 12:0 a.m.33 views

Fedora 23 : qemu-2.4.0-2.fc23 (2015-14783)

CVE-2015-5225: heap memory corruption in vncrefreshserversurface bz 1255899 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

7.2CVSS7.6AI score0.00533EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/09/03 12:0 a.m.46 views

Debian DSA-3348-1 : qemu - security update

Several vulnerabilities were discovered in qemu, a fast processor emulator. - CVE-2015-3214 Matt Tait of Google's Project Zero security team discovered a flaw in the QEMU i8254 PIT emulation. A privileged guest user in a guest with QEMU PIT emulation enabled could potentially use this flaw to...

9.3CVSS8.1AI score0.13288EPSS
Exploits2References20
Debian
Debian
added 2015/09/02 4:22 p.m.50 views

[SECURITY] [DSA 3348-1] qemu security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3348-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 02, 2015 https://www.debian.org/security/faq -...

9.3CVSS8.2AI score0.13288EPSS
Exploits2
OpenVAS
OpenVAS
added 2015/09/02 12:0 a.m.37 views

Debian Security Advisory DSA 3348-1 (qemu - security update)

Several vulnerabilities were discovered in qemu, a fast processor emulator. CVE-2015-3214 Matt Tait of Google OpenVAS Vulnerability Test $Id: deb3348.nasl 6609 2017-07-07 12:05:59Z cfischer $ Auto-generated from advisory DSA 3348-1 using nvtgen 1.0 Script version: 1.0 Author: Greenbone Networks...

7.2CVSS0.6AI score0.13288EPSS
Exploits2References1
OpenVAS
OpenVAS
added 2015/09/01 12:0 a.m.39 views

Debian: Security Advisory (DSA-3348-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.8AI score0.13288EPSS
Exploits2References3
securityvulns
securityvulns
added 2015/08/31 12:0 a.m.100 views

[USN-2724-1] QEMU vulnerabilities

========================================================================== Ubuntu Security Notice USN-2724-1 August 27, 2015 qemu, qemu-kvm vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its...

7.2CVSS0.9AI score0.13288EPSS
Exploits1
Ubuntu
Ubuntu
added 2015/08/27 12:0 p.m.71 views

USN-2724-1: QEMU vulnerabilities

It was discovered that QEMU incorrectly handled a PRDT with zero complete sectors in the IDE functionality. A malicious guest could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. CVE-2014-9718 Donghai Zhu discovered that QEMU...

9.3CVSS7.6AI score0.13288EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2015/08/25 12:0 a.m.32 views

CVE-2015-5225

Buffer overflow in the vncrefreshserversurface function in the VNC display driver in QEMU before 2.4.0.1 allows guest users to cause a denial of service heap memory corruption and process crash or possibly execute arbitrary code on the host via unspecified vectors, related to refreshing the serve...

7.2CVSS7AI score0.00533EPSS
Exploits0References2
Rows per page
Query Builder