Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2017-9330

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - QEMU aka Quick Emulator before 2.9.0, when built with the USB OHCI Emulation support, allows local guest OS users to cause a denial of service infinite loop by...

5.6CVSS6.8AI score0.00348EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2017:1742-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.04544EPSS
Exploits0References14
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2017:1774-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.9CVSS8AI score0.04544EPSS
Exploits1References30
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2017:2946-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.9CVSS7.7AI score0.04544EPSS
Exploits1References38
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2017:1812-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.5AI score0.04544EPSS
Exploits0References21
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2017:1795-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.5AI score0.04544EPSS
Exploits0References21
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.47 views

Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2018-1247)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.02843EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/11/10 12:0 a.m.40 views

SUSE SLES12 Security Update : qemu (SUSE-SU-2017:2969-1)

This update for qemu fixes several issues. These security issues were fixed : - CVE-2017-15289: The mode4and5 write functions allowed local OS guest privileged users to cause a denial of service out-of-bounds write access and Qemu process crash via vectors related to dst calculation bsc1063122 -...

9.9CVSS7.5AI score0.04544EPSS
Exploits1References90
Tenable Nessus
Tenable Nessus
added 2017/09/14 12:0 a.m.44 views

Ubuntu 14.04 LTS / 16.04 LTS : QEMU vulnerabilities (USN-3414-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3414-1 advisory. Leo Gaspard discovered that QEMU incorrectly handled VirtFS access control. A guest attacker could use this issue to elevate privileges insid...

9.8CVSS6.8AI score0.04093EPSS
Exploits0References17
OpenVAS
OpenVAS
added 2017/09/04 12:0 a.m.41 views

Fedora Update for xen FEDORA-2017-b7f1197c23

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.04093EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/07/27 12:0 a.m.252 views

Fedora 25 : 2:qemu (2017-f941184db1)

CVE-2017-7718: cirrus: OOB read access issue bz 1443443 - CVE-2016-9603: cirrus: heap buffer overflow via vnc connection bz 1432040 - CVE-2017-7377: 9pfs: fix file descriptor leak bz 1437872 - CVE-2017-7980: cirrus: OOB r/w access issues in bitblt bz 1444372 - CVE-2017-8112: vmwpvscsi: infinite...

9.9CVSS7.3AI score0.04544EPSS
Exploits0References14
Debian
Debian
added 2017/07/25 8:6 p.m.55 views

[SECURITY] [DSA 3920-1] qemu security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3920-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 25, 2017 https://www.debian.org/security/faq -...

7.5CVSS8.1AI score0.04093EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/07/16 12:0 a.m.27 views

openSUSE: Security Advisory for qemu (openSUSE-SU-2017:1872-1)

The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.9CVSS7AI score0.04544EPSS
Exploits1References1
OPENSUSE Linux
OPENSUSE Linux
added 2017/07/15 12:10 a.m.701 views

Security update for qemu (important)

This update for qemu fixes several issues. These security issues were fixed: - CVE-2017-9330: USB OHCI Emulation in qemu allowed local guest OS users to cause a denial of service infinite loop by leveraging an incorrect return value bsc1042159. - CVE-2017-8379: Memory leak in the keyboard input...

7.8CVSS3.3AI score0.04544EPSS
Exploits1References27
OpenVAS
OpenVAS
added 2017/07/14 12:0 a.m.48 views

openSUSE: Security Advisory for xen (openSUSE-SU-2017:1826-1)

The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS7.6AI score0.04544EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/07/10 12:0 a.m.254 views

openSUSE Security Update : xen (openSUSE-2017-799)

This update for xen fixes several issues. These security issues were fixed : - CVE-2017-10912: Page transfer might have allowed PV guest to elevate privilege XSA-217, bsc1042882 - CVE-2017-10913 CVE-2017-10914: Races in the grant table unmap code allowed for informations leaks and potentially...

10CVSS6.9AI score0.04544EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2017/07/05 12:0 a.m.43 views

SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2017:1774-1)

This update for qemu fixes several issues. These security issues were fixed : - CVE-2017-9330: USB OHCI Emulation in qemu allowed local guest OS users to cause a denial of service infinite loop by leveraging an incorrect return value bsc1042159. - CVE-2017-8379: Memory leak in the keyboard input...

9.9CVSS7.5AI score0.04544EPSS
Exploits1References74
Tenable Nessus
Tenable Nessus
added 2017/07/03 12:0 a.m.41 views

SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2017:1742-1)

This update for xen fixes several issues. These security issues were fixed : - Page transfer might have allowed PV guest to elevate privilege XSA-217, bsc1042882 - Races in the grant table unmap code allowed for informations leaks and potentially privilege escalation XSA-218, bsc1042893 -...

7.8CVSS7AI score0.04544EPSS
Exploits0References16
CVE
CVE
added 2017/06/08 4:0 p.m.128 views

CVE-2017-9330

CVE-2017-9330 : QEMU (Quick Emulator) prior to 2.9.0, when built with USB OHCI Emulation support, allows a local guest OS user to trigger a denial of service (infinite loop) via an incorrect return value. This is a distinct issue from CVE-2017-6505. Connected sources list QEMU as the affected com...

5.6CVSS6AI score0.00348EPSS
Exploits0References7Affected Software1
Prion
Prion
added 2017/03/15 2:59 p.m.23 views

Design/Logic Flaw

The ohciserviceedlist function in hw/usb/hcd-ohci.c in QEMU aka Quick Emulator before 2.9.0 allows local guest OS users to cause a denial of service infinite loop via vectors involving the number of link endpoint list descriptors, a different vulnerability than CVE-2017-9330...

2.1CVSS5.6AI score0.00384EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder