20 matches found
MiracleLinux 7 : qemu-kvm-1.5.3-126.el7.10 (AXSA:2017-1730:05)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2017-1730:05 advisory. qemu-kvm is an open source virtualizer that provides hardware emulation for the KVM hypervisor. qemu-kvm acts as a virtual machine monitor together with the...
Linux Distros Unpatched Vulnerability : CVE-2017-9524
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The qemu-nbd server in QEMU aka Quick Emulator, when built with the Network Block Device NBD Server support, allows remote attackers to cause a denial of servic...
Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2017-1157)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2017-1156)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
qemu security update
15:3.1.0-5.el7 - Only enable the halt poll control MSR if it is supported by the host Mark Kanda Orabug: 29946722 15:3.1.0-4.el7 - kvm: i386: halt poll control MSR support Marcelo Tosatti Orabug: 29933278 - Document CVEs as fixed: CVE-2017-9524, CVE-2017-6058, CVE-2017-5931 Mark Kanda Orabug:...
SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2017:2936-1)
This update for qemu fixes several issues. These security issues were fixed : - CVE-2017-15268: Qemu allowed remote attackers to cause a memory leak by triggering slow data-channel read operations, related to io/channel-websock.c bsc1062942. - CVE-2017-9524: The qemu-nbd server when built with th...
Ubuntu 14.04 LTS / 16.04 LTS : QEMU vulnerabilities (USN-3414-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3414-1 advisory. Leo Gaspard discovered that QEMU incorrectly handled VirtFS access control. A guest attacker could use this issue to elevate privileges insid...
Fedora Update for xen FEDORA-2017-b7f1197c23
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
qemu-kvm security, bug fix, and enhancement update
1.5.3-141.el7 - kvm-Fix-memory-slot-page-alignment-logic-bug-1455745.patch bz1455745 - kvm-Do-not-hang-on-full-PTY.patch bz1452067 - kvm-serial-fixing-vmstate-for-save-restore.patch bz1452067 - kvm-serial-reinstate-watch-after-migration.patch bz1452067 -...
[SECURITY] [DSA 3925-1] qemu security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3925-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 04, 2017 https://www.debian.org/security/faq -...
Moderate: Red Hat Security Advisory: qemu-kvm-rhev security and bug fix update
An update for qemu-kvm-rhev is now available for Red Hat Enterprise Linux OpenStack Platform 6.0 Juno for RHEL 7, Red Hat Enterprise Linux OpenStack Platform 7.0 Kilo for RHEL 7, Red Hat OpenStack Platform 8.0 Liberty, Red Hat OpenStack Platform 9.0 Mitaka, Red Hat OpenStack Platform 10.0 Newton,...
[SECURITY] [DSA 3920-1] qemu security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3920-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 25, 2017 https://www.debian.org/security/faq -...
RedHat Update for qemu-kvm RHSA-2017:1681-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-9524
CVE-2017-9524 affects the qemu-nbd server in QEMU when built with NBD Server support. The advisory notes a remote-denial-of-service risk caused by a failure to ensure full initialization before negotiating with the client in nbd_negotiate, allowing a remote attacker to trigger a segmentation faul...
Scientific Linux Security Update : qemu-kvm on SL7.x x86_64 (20170705)
Security Fixes : - Quick Emulator QEMU built with Network Block Device NBD Server support was vulnerable to a NULL pointer dereference issue. The flaw could occur when releasing a client, which was not initialized due to failed negotiation. A remote user or process could exploit this flaw to cras...
CentOS 7 : qemu-kvm (CESA-2017:1681)
An update for qemu-kvm is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
RHEL 7 : qemu-kvm (RHSA-2017:1681)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:1681 advisory. Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm package provides the...
Important: Red Hat Security Advisory: qemu-kvm security update
An update for qemu-kvm is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
Important: Red Hat Security Advisory: qemu-kvm-rhev security and bug fix update
An update for qemu-kvm-rhev is now available for RHEV 3.X Hypervisor and Agents for RHEL-7 and RHEV 4.X RHEV-H and Agents for RHEL-7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a...
pfsense 2.3.2 Code Execution Vulnerability
Overview pfsense is an open source firewall. The web interface is written in PHP. In version 2.3.2-RELEASE amd64, the setup wizard is vulnerable to code execution. It should be noted that by default, only an administrator can access the setup wizard. By default, administrators have far-reaching...