Lucene search
K

16 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:40 a.m.2 views

SUSE CVE-2017-13711

Use-after-free vulnerability in the sofree function in slirp/socket.c in QEMU aka Quick Emulator allows attackers to cause a denial of service QEMU instance crash by leveraging failure to properly clear ifqso from pending packets...

4CVSS6.8AI score0.03841EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2017:2924-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.1AI score0.04272EPSS
Exploits1References13
RedhatCVE
RedhatCVE
added 2020/04/05 4:53 p.m.33 views

CVE-2017-13711

A use-after-free issue was found in the Slirp networking implementation of the Quick emulator QEMU. It occurs when a Socket referenced from multiple packets is freed while responding to a message. A user/process could use this flaw to crash the QEMU process on the host resulting in denial of...

7.5CVSS2.4AI score0.03841EPSS
Exploits0References1
Oracle linux
Oracle linux
added 2019/05/14 12:0 a.m.142 views

qemu security update

15:3.1.0-3.el7 - x86: Document CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 as fixed Mark Kanda Orabug: 29744956 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091 15:3.1.0-2.el7 - x86: Add mds feature Karl Heubaum - e1000: Never increment the RX undersize count register...

10CVSS7.6AI score0.93838EPSS
Exploits26
Oracle linux
Oracle linux
added 2018/11/20 12:0 a.m.258 views

qemu security update

15:3.0.0-1.el7 - net: ignore packet size greater than INTMAX Jason Wang Orabug: 28763782 CVE-2018-17963 - pcnet: fix possible buffer overflow Jason Wang Orabug: 28763774 CVE-2018-17962 - rtl8139: fix possible out of bound access Jason Wang Orabug: 28763765 CVE-2018-17958 - ne2000: fix possible ou...

10CVSS0.93838EPSS
Exploits24
Tenable Nessus
Tenable Nessus
added 2018/04/18 12:0 a.m.48 views

Oracle Linux 7 : qemu-kvm (ELSA-2018-0816)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-0816 advisory. - Resolves: bz1518711 CVE-2017-15268 qemu-kvm: Qemu: I/O: potential memory exhaustion via websock connection to VNC rhel-7.5 - Resolves: bz1527405...

8.8CVSS7.3AI score0.74041EPSS
Exploits11References6
Tenable Nessus
Tenable Nessus
added 2018/04/17 12:0 a.m.52 views

RHEL 7 : qemu-kvm-rhev (RHSA-2018:1104)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:1104 advisory. KVM Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provi...

9.8CVSS7.2AI score0.11931EPSS
Exploits5References135
RedHat Linux
RedHat Linux
added 2018/04/11 5:52 p.m.45 views

Moderate: Red Hat Security Advisory: qemu-kvm-rhev security and bug fix update

An update for qemu-kvm-rhev is now available for Red Hat OpenStack Platform 10.0 Newton, Red Hat OpenStack Platform 11.0 Ocata, Red Hat OpenStack Platform 12.0 Pike, Red Hat OpenStack Platform 8.0 Liberty, and Red Hat OpenStack Platform 9.0 Mitaka. Red Hat Product Security has rated this update a...

9.8CVSS6.7AI score0.11931EPSS
Exploits5References11
Tenable Nessus
Tenable Nessus
added 2018/04/11 12:0 a.m.49 views

RHEL 7 : qemu-kvm (RHSA-2018:0816)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:0816 advisory. Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide th...

7.8CVSS6.8AI score0.04272EPSS
Exploits2References32
RedHat Linux
RedHat Linux
added 2018/04/10 8:47 a.m.70 views

Low: Red Hat Security Advisory: qemu-kvm security, bug fix, and enhancement update

An update for qemu-kvm is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

7.8CVSS6.7AI score0.04272EPSS
Exploits2References25
OPENSUSE Linux
OPENSUSE Linux
added 2017/11/07 6:9 a.m.82 views

Security update for qemu (important)

This update for qemu to version 2.9.1 fixes several issues. It also announces that the qed storage format will be no longer supported in Leap 15.0. These security issues were fixed: - CVE-2017-15268: Qemu allowed remote attackers to cause a memory leak by triggering slow data-channel read...

7.2CVSS8.2AI score0.04272EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2017/11/07 12:0 a.m.48 views

openSUSE Security Update : qemu (openSUSE-2017-1248)

This update for qemu to version 2.9.1 fixes several issues. It also announces that the qed storage format will be no longer supported in Leap 15.0. These security issues were fixed : - CVE-2017-15268: Qemu allowed remote attackers to cause a memory leak by triggering slow data-channel read...

8.8CVSS7AI score0.04272EPSS
Exploits1References19
OSV
OSV
added 2017/09/01 1:29 p.m.33 views

CVE-2017-13711

Use-after-free vulnerability in the sofree function in slirp/socket.c in QEMU aka Quick Emulator allows attackers to cause a denial of service QEMU instance crash by leveraging failure to properly clear ifqso from pending packets...

7.5CVSS6.3AI score
Exploits0References8
Cvelist
Cvelist
added 2017/09/01 1:0 p.m.27 views

CVE-2017-13711

Use-after-free vulnerability in the sofree function in slirp/socket.c in QEMU aka Quick Emulator allows attackers to cause a denial of service QEMU instance crash by leveraging failure to properly clear ifqso from pending packets...

7AI score0.03841EPSS
Exploits0References8
CVE
CVE
added 2017/09/01 1:0 p.m.150 views

CVE-2017-13711

CVE-2017-13711 : Use-after-free in QEMU’s Slirp implementation (slirp/socket.c, function sofree) can trigger a QEMU instance crash (DoS) when pending packets’ ifq_so is not properly cleared. The connected Nessus records (MiracleLinux AXSA-2018-2655:03) enumerate this CVE among others affected by ...

7.5CVSS6.9AI score0.03841EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2017/09/01 1:0 p.m.45 views

CVE-2017-13711

Use-after-free vulnerability in the sofree function in slirp/socket.c in QEMU aka Quick Emulator allows attackers to cause a denial of service QEMU instance crash by leveraging failure to properly clear ifqso from pending packets...

7.5CVSS6.3AI score0.03841EPSS
Exploits0
Rows per page
Query Builder