Lucene search
+L

12 matches found

osv
osv
added 2023/08/31 12:14 p.m.1 views

BELL-CVE-2019-18389 CVE-2019-18389 does not affect BellSoft software

Bulletin has no description...

7.8CVSS5.8AI score0.00439EPSS
Exploits0References1
openvas
openvas
added 2022/12/08 12:0 a.m.26 views

Debian: Security Advisory (DLA-3232-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.6AI score0.00439EPSS
Exploits0References4
nessus
nessus
added 2020/09/08 12:0 a.m.22 views

EulerOS Virtualization for ARM 64 3.0.2.0 : virglrenderer (EulerOS-SA-2020-1970)

According to the versions of the virglrenderer package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - A heap-based buffer overflow flaw was found in virglrenderer. The vrendrenderertransferwriteiov function allows...

7.8CVSS6.4AI score0.00439EPSS
Exploits0References3
openvas
openvas
added 2020/09/08 12:0 a.m.10 views

Huawei EulerOS: Security Advisory for virglrenderer (EulerOS-SA-2020-1970)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.00439EPSS
Exploits0References2
openvas
openvas
added 2020/08/31 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for virglrenderer (EulerOS-SA-2020-1888)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.00439EPSS
Exploits0References2
openvas
openvas
added 2020/01/27 12:0 a.m.26 views

openSUSE: Security Advisory for virglrenderer (openSUSE-SU-2020:0058_1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS6.3AI score0.00439EPSS
Exploits0References2
nessus
nessus
added 2020/01/15 12:0 a.m.28 views

openSUSE Security Update : virglrenderer (openSUSE-2020-58)

This update for virglrenderer fixes the following issues : - CVE-2019-18388: Fixed a NULL pointer dereference which could have led to denial of service bsc1159479. - CVE-2019-18390: Fixed an out of bound read which could have led to denial of service bsc1159478. - CVE-2019-18389: Fixed a heap...

7.8CVSS6.1AI score0.00439EPSS
Exploits0References8
nessus
nessus
added 2020/01/08 12:0 a.m.38 views

SUSE SLED15 / SLES15 Security Update : virglrenderer (SUSE-SU-2020:0017-1)

This update for virglrenderer fixes the following issues : CVE-2019-18388: Fixed a NULL pointer dereference which could have led to denial of service bsc1159479. CVE-2019-18390: Fixed an out of bound read which could have led to denial of service bsc1159478. CVE-2019-18389: Fixed a heap buffer...

7.8CVSS6.2AI score0.00439EPSS
Exploits0References13
nessus
nessus
added 2020/01/08 12:0 a.m.38 views

SUSE SLED12 / SLES12 Security Update : virglrenderer (SUSE-SU-2020:0016-1)

This update for virglrenderer fixes the following issues : CVE-2019-18388: Fixed a NULL pointer dereference which could have led to denial of service bsc1159479. CVE-2019-18390: Fixed an out of bound read which could have led to denial of service bsc1159478. CVE-2019-18389: Fixed a heap buffer...

7.8CVSS6.2AI score0.00439EPSS
Exploits0References13
nvd
nvd
added 2019/12/23 4:15 p.m.14 views

CVE-2019-18389

A heap-based buffer overflow in the vrendrenderertransferwriteiov function in vrendrenderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service, or QEMU guest-to-host escape and code execution, via VIRGLCCMDRESOURCEINLINEWRITE commands...

7.8CVSS7.6AI score0.00439EPSS
Exploits0References6
cve
cve
added 2019/12/23 12:0 a.m.182 views

CVE-2019-18389

CVE-2019-18389 describes a heap-based buffer overflow in the virglrenderer transfer path. Specifically, vrend_renderer_transfer_write_iov in vrend_renderer.c (virglrenderer up to version 0.8.0) can be triggered by VIRGL_CCMD_RESOURCE_INLINE_WRITE, enabling denial of service and potentially guest‑...

7.8CVSS7.4AI score0.00439EPSS
Exploits0References6Affected Software1
redhatcve
redhatcve
added 2019/12/17 4:36 p.m.22 views

CVE-2019-18389

A heap-based buffer overflow flaw was found in virglrenderer. The vrendrenderertransferwriteiov function allows guest OS users to cause a denial of service or a QEMU guest-to-host escape with code execution. The highest threat from this vulnerability is to data confidentiality and integrity as we...

7.8CVSS5AI score0.00439EPSS
Exploits0References3
Rows per page
Query Builder