Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2017-15124

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - VNC server implementation in Quick Emulator QEMU 2.11.0 and older was found to be vulnerable to an unbounded memory allocation issue, as it did not throttle the...

7.8CVSS6.7AI score0.02843EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2018:0831-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7AI score0.74041EPSS
Exploits9References17
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.47 views

Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2018-1247)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.02843EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2019/05/14 12:0 a.m.142 views

qemu security update

15:3.1.0-3.el7 - x86: Document CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 as fixed Mark Kanda Orabug: 29744956 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091 15:3.1.0-2.el7 - x86: Add mds feature Karl Heubaum - e1000: Never increment the RX undersize count register...

10CVSS7.6AI score0.93838EPSS
Exploits25
Oracle linux
Oracle linux
added 2018/11/20 12:0 a.m.257 views

qemu security update

15:3.0.0-1.el7 - net: ignore packet size greater than INTMAX Jason Wang Orabug: 28763782 CVE-2018-17963 - pcnet: fix possible buffer overflow Jason Wang Orabug: 28763774 CVE-2018-17962 - rtl8139: fix possible out of bound access Jason Wang Orabug: 28763765 CVE-2018-17958 - ne2000: fix possible ou...

10CVSS0.93838EPSS
Exploits23
Tenable Nessus
Tenable Nessus
added 2018/10/31 12:0 a.m.34 views

RHEL 7 : qemu-kvm-ma (RHSA-2018:3062)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:3062 advisory. Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-ma packages provide the...

7.8CVSS7AI score0.02843EPSS
Exploits0References11
Debian
Debian
added 2018/05/29 9:25 p.m.72 views

[SECURITY] [DSA 4213-1] qemu security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4213-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 29, 2018 https://www.debian.org/security/faq -...

7.8CVSS1.1AI score0.74041EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2018/04/18 12:0 a.m.48 views

Oracle Linux 7 : qemu-kvm (ELSA-2018-0816)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-0816 advisory. - Resolves: bz1518711 CVE-2017-15268 qemu-kvm: Qemu: I/O: potential memory exhaustion via websock connection to VNC rhel-7.5 - Resolves: bz1527405...

8.8CVSS7.3AI score0.74041EPSS
Exploits10References6
Tenable Nessus
Tenable Nessus
added 2018/04/17 12:0 a.m.52 views

RHEL 7 : qemu-kvm-rhev (RHSA-2018:1104)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:1104 advisory. KVM Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provi...

9.8CVSS7.2AI score0.11931EPSS
Exploits5References135
Oracle linux
Oracle linux
added 2018/04/16 12:0 a.m.75 views

qemu-kvm security, bug fix, and enhancement update

1.5.3-156.el7 - kvm-vnc-Fix-qemu-crashed-when-vnc-client-disconnect-sudd.patch bz1527405 - kvm-fix-full-frame-updates-for-VNC-clients.patch bz1527405 - kvm-vnc-update-fix.patch bz1527405 - kvm-vnc-return-directly-if-no-vnc-client-connected.patch bz1527405 - kvm-buffer-add-buffermoveempty.patch...

8.8CVSS0.1AI score0.74041EPSS
Exploits10
RedHat Linux
RedHat Linux
added 2018/04/11 5:52 p.m.45 views

Moderate: Red Hat Security Advisory: qemu-kvm-rhev security and bug fix update

An update for qemu-kvm-rhev is now available for Red Hat OpenStack Platform 10.0 Newton, Red Hat OpenStack Platform 11.0 Ocata, Red Hat OpenStack Platform 12.0 Pike, Red Hat OpenStack Platform 8.0 Liberty, and Red Hat OpenStack Platform 9.0 Mitaka. Red Hat Product Security has rated this update a...

9.8CVSS6.7AI score0.11931EPSS
Exploits5References11
Tenable Nessus
Tenable Nessus
added 2018/04/11 12:0 a.m.49 views

RHEL 7 : qemu-kvm (RHSA-2018:0816)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:0816 advisory. Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide th...

7.8CVSS6.8AI score0.04272EPSS
Exploits2References32
RedHat Linux
RedHat Linux
added 2018/04/10 8:47 a.m.69 views

Low: Red Hat Security Advisory: qemu-kvm security, bug fix, and enhancement update

An update for qemu-kvm is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

7.8CVSS6.7AI score0.04272EPSS
Exploits2References25
Tenable Nessus
Tenable Nessus
added 2018/03/28 12:0 a.m.234 views

SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2018:0831-1) (Spectre)

This update for qemu fixes the following issues: This update has the next round of Spectre v2 related patches, which now integrate with corresponding changes in libvirt. CVE-2017-5715 bsc1068032 The January 2018 release of qemu initially addressed the Spectre v2 vulnerability for KVM guests by...

10CVSS7.5AI score0.74041EPSS
Exploits9References33
OPENSUSE Linux
OPENSUSE Linux
added 2018/03/23 12:7 a.m.132 views

Security update for qemu (important)

This update for qemu fixes the following issues: This update has the next round of Spectre v2 related patches, which now integrate with corresponding changes in libvirt. CVE-2017-5715 bsc1068032 The January 2018 release of qemu initially addressed the Spectre v2 vulnerability for KVM guests by...

7.8CVSS7.7AI score0.74041EPSS
Exploits9References12
Ubuntu
Ubuntu
added 2018/03/05 9:43 a.m.73 views

USN-3575-2: QEMU regression

USN-3575-1 fixed vulnerabilities in QEMU. The fix for CVE-2017-11334 caused a regression in Xen environments. This update removes the problematic fix pending further investigation. We apologize for the inconvenience. Original advisory details: It was discovered that QEMU incorrectly handled guest...

7.3AI score0.11931EPSS
Exploits5References1
Ubuntu
Ubuntu
added 2018/02/20 7:12 p.m.77 views

USN-3575-1: QEMU vulnerabilities

It was discovered that QEMU incorrectly handled guest ram. A privileged attacker inside the guest could use this issue to cause QEMU to crash, resulting in a denial of service. This issue only affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. CVE-2017-11334 David Buchanan discovered that QEMU...

10CVSS7.4AI score0.11931EPSS
Exploits5
CVE
CVE
added 2018/01/09 9:0 p.m.159 views

CVE-2017-15124

CVE-2017-15124 affects the VNC server in Quick Emulator (QEMU) 2.11.0 and older, due to an unbounded memory allocation when updating framebuffer data. A remote VNC client that does not consume updates can cause growing memory usage, leading to a denial of service on the host. Concrete details acr...

7.8CVSS6.6AI score0.02843EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2018/01/09 12:0 a.m.3 views

UBUNTU-CVE-2017-15124

VNC server implementation in Quick Emulator QEMU 2.11.0 and older was found to be vulnerable to an unbounded memory allocation issue, as it did not throttle the framebuffer updates sent to its client. If the client did not consume these updates, VNC server allocates growing memory to hold onto th...

7.5CVSS6.9AI score0.02843EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2017/12/19 9:49 a.m.32 views

CVE-2017-15124

VNC server implementation in Quick Emulator QEMU was found to be vulnerable to an unbounded memory allocation issue, as it did not throttle the framebuffer updates sent to its client. If the client did not consume these updates, VNC server allocates growing memory to hold onto this data. A...

7.8CVSS2.2AI score0.02843EPSS
Exploits0References1
Rows per page
Query Builder