14 matches found
Security fix for the ALT Linux 10 package qemu version 6.1.1-alt1
6.1.1-alt1 built March 1, 2022 Alexey Shabalin in task 295902 --- Feb. 24, 2022 Alexey Shabalin - 6.1.1 - Fixes for the following security vulnerabilities: + CVE-2021-3713 uas: add stream number sanity checks + CVE-2021-3947 hw/nvme: fix buffer overrun in nvmechangednslist + CVE-2021-20196...
Ubuntu: Security Advisory (USN-5307-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-5307-1: QEMU vulnerabilities
Gaoning Pan discovered that QEMU incorrectly handled the floppy disk emulator. An attacker inside the guest could use this issue to cause QEMU to crash, resulting in a denial of service. CVE-2021-20196 Gaoning Pan discovered that the QEMU vmxnet3 NIC emulator incorrectly handled certain values. A...
qemu security update
15:4.2.1-15.el7 - Document CVE-2021-4158 and CVE-2021-3947 as fixed Mark Kanda Orabug: 33719302 Orabug: 33754145 CVE-2021-3947 CVE-2021-4158 - hw/block/fdc: Kludge missing floppy drive to fix CVE-2021-20196 Philippe Mathieu-Daude Orabug: 32439466 CVE-2021-20196 - hw/block/fdc: Extract...
Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2022-1014)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2021:0521-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2021:1305-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2021:1245-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for qemu (openSUSE-SU-2021:0363-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Debian: Security Advisory (DLA-2623-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2623-1] qemu security update
Debian LTS Advisory DLA-2623-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany April 10, 2021 https://wiki.debian.org/LTS Package : qemu Version : 1:2.8+dfsg-6+deb9u14 CVE ID : CVE-2020-17380 CVE-2021-3392 CVE-2021-3409 CVE-2021-3416 CVE-2021-20203 CVE-2021-20255...
CVE-2021-20203 affecting package qemu-kvm 4.2.0-48
CVE-2021-20203 affecting package qemu-kvm 4.2.0-48. A patched version of the package is available...
openSUSE Security Update : qemu (openSUSE-2021-363)
This update for qemu fixes the following issues : - Fixed potential privilege escalation in virtfs CVE-2021-20181 bsc1182137 - Fixed out-of-bound access in iscsi CVE-2020-11947 bsc1180523 - Fixed out-of-bound access in vmxnet3 emulation CVE-2021-20203 bsc1181639 - Fixed out-of-bound access in ARM...
CVE-2021-20203
CVE-2021-20203 affects the QEMU vmxnet3 NIC emulator (versions up to v5.2.0). A defect allows an integer overflow when a guest supplies invalid rx/tx queue sizes or NIC parameters, potentially crashing the QEMU process on the host and causing DoS. Multiple connected advisories note fixes via upda...