Lucene search
K

28 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2015-6855

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a denial of service or possibly hav...

7.5CVSS7.3AI score0.03502EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 5:14 a.m.6 views

SUSE CVE-2015-6855

hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a denial of service or possibly have unspecified other impact via certain IDE commands, as demonstrated by a WINREADNATIVEMAX command to an empty drive, which triggers a...

7.5CVSS7.7AI score0.03502EPSS
Exploits0References13
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.37 views

Mageia: Security Advisory (MGASA-2015-0368)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.8AI score0.13288EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2020/04/15 12:0 a.m.239 views

EulerOS 2.0 SP3 : qemu-kvm (EulerOS-SA-2020-1430)

According to the versions of the qemu-kvm packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In libslirp 4.1.0, as used in QEMU 4.2.0, tcpsubr.c misuses snprintf return values, leading to a buffer overflow in later code.CVE-2020-8608 -...

10CVSS8.3AI score0.16658EPSS
Exploits8References67
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 10:33 p.m.56 views

Security Bulletin: Multiple vulnerabilities in qemu-kvm affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance

Summary Multiple vulnerabilities in qemu-kvm affect IBM SmartCloud Provisioning V2.1 for IBM Software Virtual Appliance. Please note product software support discontinuance as per IBM Withdrawal Announcement 916-016. For withdrawal announcement information details see the Reference section below...

7.5CVSS1.2AI score0.0361EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/08/29 12:0 a.m.34 views

SUSE SLES11 Security Update : kvm (SUSE-SU-2016:1698-1)

kvm was updated to fix 33 security issues. These security issues were fixed : - CVE-2016-4439: Avoid OOB access in 53C9X emulation bsc980711 - CVE-2016-4441: Avoid OOB access in 53C9X emulation bsc980723 - CVE-2016-3710: Fixed VGA emulation based OOB access with potential for guest escape bsc9781...

9.8CVSS7.4AI score0.06336EPSS
Exploits3References103
Tenable Nessus
Tenable Nessus
added 2016/08/29 12:0 a.m.48 views

SUSE SLES11 Security Update : kvm (SUSE-SU-2016:1785-1)

kvm was updated to fix 33 security issues. These security issues were fixed : - CVE-2016-4439: Avoid OOB access in 53C9X emulation bsc980711 - CVE-2016-4441: Avoid OOB access in 53C9X emulation bsc980723 - CVE-2016-3710: Fixed VGA emulation based OOB access with potential for guest escape bsc9781...

9.8CVSS7.4AI score0.06336EPSS
Exploits3References103
Tenable Nessus
Tenable Nessus
added 2016/04/13 12:0 a.m.53 views

openSUSE Security Update : xen (openSUSE-2016-439)

xen was updated to version 4.4.4 to fix 33 security issues. These security issues were fixed : - CVE-2016-2392: NULL pointer dereference in remote NDIS control message handling bsc967012. - CVE-2015-5239: Integer overflow in vncclientread and protocolclientmsg bsc944463. - CVE-2016-2270: Xen...

9CVSS7.6AI score0.0773EPSS
Exploits2References66
OPENSUSE Linux
OPENSUSE Linux
added 2016/04/08 7:10 p.m.52 views

Security update for xen (important)

xen was updated to version 4.4.4 to fix 33 security issues. These security issues were fixed: - CVE-2016-2392: NULL pointer dereference in remote NDIS control message handling bsc967012. - CVE-2015-5239: Integer overflow in vncclientread and protocolclientmsg bsc944463. - CVE-2016-2270: Xen allow...

10CVSS4.7AI score0.0773EPSS
Exploits2References33
Tenable Nessus
Tenable Nessus
added 2016/04/07 12:0 a.m.37 views

SUSE SLED11 / SLES11 Security Update : xen (SUSE-SU-2016:0955-1)

xen was updated to fix 47 security issues. These security issues were fixed : - CVE-2013-4527: Buffer overflow in hw/timer/hpet.c might have allowed remote attackers to execute arbitrary code via vectors related to the number of timers bnc864673. - CVE-2013-4529: Buffer overflow in hw/pci/pcieaer...

9CVSS7.8AI score0.0773EPSS
Exploits4References144
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.24 views

Fedora 23 : xen-4.5.1-10.fc23 (2015-8dc71ade88)

ide: fix ATAPI command permissions CVE-2015-6855 1261792 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issue...

7.5CVSS7.2AI score0.03502EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.32 views

Fedora 21 : xen-4.4.3-5.fc21 (2015-d6ea74993a)

ide: fix ATAPI command permissions CVE-2015-6855 1261792 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issue...

7.5CVSS7.2AI score0.03502EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/12/17 12:0 a.m.186 views

F5 Networks BIG-IP : QEMU vulnerability (SOL51841514)

hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a denial of service or possibly have unspecified other impact via certain IDE commands, as demonstrated by a WINREADNATIVEMAX command to an empty drive, which triggers a...

7.5CVSS7.4AI score0.03502EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2015/12/02 12:0 a.m.67 views

SOL51841514 - QEMU vulnerability CVE-2015-6855

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

7.5CVSS2.9AI score0.03502EPSS
Exploits0References7
OSV
OSV
added 2015/11/06 9:59 p.m.12 views

CVE-2015-6855

hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a denial of service or possibly have unspecified other impact via certain IDE commands, as demonstrated by a WINREADNATIVEMAX command to an empty drive, which triggers a...

7.5CVSS8.8AI score
Exploits0References20
CVE
CVE
added 2015/11/06 9:0 p.m.126 views

CVE-2015-6855

CVE-2015-6855 affects QEMU, where hw/ide/core.c does not properly restrict ATAPI device commands. The flaw allows a guest user to cause a denial of service (and potentially other impact) by issuing certain IDE commands, demonstrated by a WIN_READ_NATIVE_MAX to an empty drive that triggers a divid...

7.5CVSS7.4AI score0.03502EPSS
Exploits0References16Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/10/21 12:0 a.m.37 views

SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2015:1782-1)

qemu was updated to fix several security issues and bugs. The following vulnerabilities were fixed : - CVE-2015-5154: Heap-based buffer overflow in the IDE subsystem in QEMU, when the container has a CDROM drive enabled, allows local guest users to execute arbitrary code on the host via unspecifi...

7.5CVSS7.6AI score0.03742EPSS
Exploits0References26
Tenable Nessus
Tenable Nessus
added 2015/10/16 12:0 a.m.28 views

Fedora 22 : xen-4.5.1-10.fc22 (2015-4896530727)

ide: fix ATAPI command permissions CVE-2015-6855 1261792 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issue...

7.5CVSS7.2AI score0.03502EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2015/10/13 12:0 a.m.45 views

Fedora Update for qemu FEDORA-2015-16369

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.03502EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/10/12 12:0 a.m.42 views

Fedora 21 : qemu-2.1.3-11.fc21 (2015-16368)

CVE-2015-6815: net: e1000: infinite loop issue bz 1260225 CVE-2015-6855: ide: divide by zero issue bz 1261793 CVE-2015-5278: Infinite loop in ne2000receive bz 1263284 CVE-2015-5279: Heap overflow vulnerability in ne2000receive bz 1263287 Make block copy more stable bz 1264416 Fix hang at start of...

7.5CVSS6.7AI score0.03502EPSS
Exploits0References11
Rows per page
Query Builder