Lucene search
K

26 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2020-29129

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length...

4.3CVSS6.8AI score0.01443EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2022-1014)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS6.7AI score0.02904EPSS
Exploits3References2
Ubuntu
Ubuntu
added 2021/10/26 2:24 p.m.120 views

USN-5009-2: libslirp vulnerabilities

USN-5009-1 fixed vulnerabilities in libslirp. This update provides the corresponding updates for Ubuntu 21.10. Original advisory details: Qiuhao Li discovered that libslirp incorrectly handled certain header data lengths. An attacker inside a guest could possibly use this issue to leak sensitive...

3.8CVSS6.6AI score0.00326EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/07/16 12:0 a.m.37 views

Ubuntu: Security Advisory (USN-5009-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.3AI score0.0183EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2021/07/15 5:23 p.m.157 views

USN-5009-1: libslirp vulnerabilities

Qiuhao Li discovered that libslirp incorrectly handled certain header data lengths. An attacker inside a guest could possibly use this issue to leak sensitive information from the host. This issue only affected Ubuntu 20.04 LTS and Ubuntu 20.10. CVE-2020-29129, CVE-2020-29130 It was discovered th...

4.3CVSS6.6AI score0.0183EPSS
Exploits1
OpenVAS
OpenVAS
added 2021/07/13 12:0 a.m.30 views

openSUSE: Security Advisory for qemu (openSUSE-SU-2021:1942-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.7AI score0.05447EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2021/06/23 12:0 a.m.61 views

Amazon Linux 2 : qemu (ALAS-2021-1671)

The version of qemu installed on the remote host is prior to 3.1.0-8. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2021-1671 advisory. A heap buffer overflow flaw was found in the iSCSI support of QEMU. This flaw could lead to an out-of- bounds read access and...

6CVSS6.7AI score0.0183EPSS
Exploits1References13
OpenVAS
OpenVAS
added 2021/06/11 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2021:1947-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.05447EPSS
Exploits2References14
OpenVAS
OpenVAS
added 2021/06/11 12:0 a.m.42 views

SUSE: Security Advisory (SUSE-SU-2021:1942-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.05447EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2021/06/10 12:0 a.m.37 views

SUSE SLES15: qemu / qemu-arm / qemu-audio-alsa / qemu-audio-oss / qemu-audio-pa / etc (SUSE-SU-2021:1918-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:1918-1 advisory. - CVE-2020-10756: Fix out-of-bounds read information disclosure in icmp6sendechoreply bsc1172380 Tenable has extracted the precedin...

7.5CVSS6.7AI score0.05447EPSS
Exploits2References27
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2021:1243-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.02515EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.31 views

SUSE: Security Advisory (SUSE-SU-2021:1893-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.05447EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.49 views

RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2021:1762)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1762 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contai...

7.2CVSS7AI score0.0183EPSS
Exploits2References45
AlmaLinux
AlmaLinux
added 2021/05/18 6:2 a.m.53 views

Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the...

7.2CVSS7.2AI score0.0183EPSS
Exploits2References11
OSV
OSV
added 2021/05/18 6:2 a.m.38 views

RLSA-2021:1762 Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:Rocky Linux module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting wi...

6.4CVSS7.2AI score0.0183EPSS
Exploits2References33
OpenVAS
OpenVAS
added 2021/04/24 12:0 a.m.30 views

openSUSE: Security Advisory for qemu (openSUSE-SU-2021:0600-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.5CVSS6.7AI score0.02515EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2021/04/19 12:0 a.m.52 views

SUSE SLED15 / SLES15 Security Update : qemu (SUSE-SU-2021:1243-1)

This update for qemu fixes the following issues : CVE-2020-12829: Fix OOB access in sm501 device emulation bsc1172385 CVE-2020-25723: Fix use-after-free in usb xhci packet handling bsc1178934 CVE-2020-25084: Fix use-after-free in usb ehci packet handling bsc1176673 CVE-2020-25625: Fix infinite lo...

6.5CVSS6.4AI score0.02515EPSS
Exploits3References48
Oracle linux
Oracle linux
added 2021/02/08 12:0 a.m.211 views

qemu security update

15:4.2.1-4.el7 - Document CVE-2020-25723 as fixed Mark Kanda Orabug: 32222397 CVE-2020-25084 CVE-2020-25723 - hw/net/e1000e: advance descoffset in case of null descriptor Prasad J Pandit Orabug: 32217517 CVE-2020-28916 - i386: Add 2nd Generation AMD EPYC processors Moger, Babu Orabug: 32217570 -...

10CVSS8.5AI score0.93838EPSS
Exploits35
OpenVAS
OpenVAS
added 2020/12/14 12:0 a.m.32 views

Fedora: Security Advisory for libslirp (FEDORA-2020-77f93f41be)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.3AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/12/14 12:0 a.m.46 views

Fedora 33 : libslirp (2020-77f93f41be)

Fix CVE-2020-29129 CVE-2020-29130 out-of-bounds access while processing ARP/NCSI packets Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...

4.3CVSS6.5AI score0.0183EPSS
Exploits1References3
Rows per page
Query Builder