Lucene search
+L

18 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2021-3507

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 including. It could occur in fdctrltransferhandler in hw/block/fdc.c while...

6.1CVSS6.8AI score0.00485EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/02/29 12:0 a.m.26 views

CentOS 9 : qemu-kvm-7.1.0-2.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the qemu- kvm-7.1.0-2.el9 build changelog. - heap buffer overflow in DMA read data transfers rhel-9.0 CVE-2021-3507 Note that Nessus has not tested for this issue but has instead relied onl...

6.1CVSS7AI score0.00485EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2023:0878-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.00485EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2023:0761-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.00834EPSS
Exploits8References16
Tenable Nessus
Tenable Nessus
added 2023/03/24 12:0 a.m.32 views

SUSE SLED15: qemu / qemu-SLOF / qemu-accel-qtest / qemu-accel-tcg-x86 / qemu-arm / etc (SUSE-SU-2023:0879-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0879-1 advisory. - CVE-2021-3507: Fixed heap buffer overflow in DMA read data transfers in fdc bsc1185000. -...

6.1CVSS6.8AI score0.00485EPSS
Exploits2References7
OSV
OSV
added 2023/03/23 7:59 a.m.7 views

SUSE-SU-2023:0879-1 Security update for qemu

This update for qemu fixes the following issues: - CVE-2021-3507: Fixed heap buffer overflow in DMA read data transfers in fdc bsc1185000. - CVE-2020-14394: Fixed infinite loop in xhciringchainlength bsc1180207...

6.1CVSS6.1AI score0.00485EPSS
Exploits2References5
OSV
OSV
added 2023/03/21 8:54 a.m.13 views

SUSE-SU-2023:0840-1 Security update for qemu

This update for qemu fixes the following issues: - CVE-2022-4144: Fixed unsafe address translation can lead to out-of-bounds read in qxlphys2virt bsc1205808. - CVE-2021-3507: Fixed heap buffer overflow in DMA read data transfers in fdc bsc1185000. - CVE-2020-14394: Fixed infinite loop in...

8.8CVSS6.5AI score0.00643EPSS
Exploits5References14
RedHat Linux
RedHat Linux
added 2022/11/15 10:26 a.m.59 views

Moderate: Red Hat Security Advisory: qemu-kvm security, bug fix, and enhancement update

An update for qemu-kvm is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

8.2CVSS6.9AI score0.0053EPSS
Exploits4References52
AlmaLinux
AlmaLinux
added 2022/11/15 12:0 a.m.62 views

Moderate: qemu-kvm security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. The following packages have been upgraded to a later upstream version: qemu-kvm 7.0.0...

8.2CVSS7.9AI score0.0053EPSS
Exploits4References10
OSV
OSV
added 2022/11/08 6:20 a.m.31 views

RLSA-2022:7472 Low: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:Rocky Linux module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting wi...

5.5CVSS7.1AI score0.01024EPSS
Exploits1References45
Oracle linux
Oracle linux
added 2022/08/01 12:0 a.m.60 views

qemu security update

15:4.2.1-18.el7 - block: introduce maxhwiov for use in scsi-generic Paolo Bonzini Orabug: 33785156 - file-posix: try BLKSECTGET on block devices too, do not round to power of 2 Paolo Bonzini Orabug: 33785156 - block: add maxhwtransfer to BlockLimits Paolo Bonzini Orabug: 33785156 - block-backend:...

8.2CVSS0.00834EPSS
Exploits3
OpenVAS
OpenVAS
added 2022/06/22 12:0 a.m.35 views

Ubuntu: Security Advisory (USN-5489-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS6.9AI score0.02701EPSS
Exploits5References2
NVD
NVD
added 2021/05/06 4:15 p.m.18 views

CVE-2021-3507

A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 including. It could occur in fdctrltransferhandler in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system. A privileged guest user could use this flaw to crash the QEMU...

6.1CVSS0.00485EPSS
Exploits1References3
OSV
OSV
added 2021/05/06 4:15 p.m.33 views

CVE-2021-3507

A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 including. It could occur in fdctrltransferhandler in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system. A privileged guest user could use this flaw to crash the QEMU...

6.1CVSS6.5AI score
Exploits0References3
OSV
OSV
added 2021/05/06 4:15 p.m.1 views

UBUNTU-CVE-2021-3507

A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 including. It could occur in fdctrltransferhandler in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system. A privileged guest user could use this flaw to crash the QEMU...

6.1CVSS6.9AI score0.00485EPSS
Exploits1References4
Cvelist
Cvelist
added 2021/05/06 3:16 p.m.35 views

CVE-2021-3507

A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 including. It could occur in fdctrltransferhandler in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system. A privileged guest user could use this flaw to crash the QEMU...

7.1AI score0.00485EPSS
Exploits1References3
CVE
CVE
added 2021/05/06 3:16 p.m.318 views

CVE-2021-3507

CVE-2021-3507 refers to a heap buffer overflow in QEMU’s floppy disk emulator up to version 6.0.0, triggered in fdctrl_transfer_handler() (hw/block/fdc.c) during DMA read data transfers from the floppy to the guest. Reported impact includes host DoS via crashing the QEMU process and potential inf...

6.1CVSS6.7AI score0.00485EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVE
added 2021/05/06 3:16 p.m.29 views

CVE-2021-3507

A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 including. It could occur in fdctrltransferhandler in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system. A privileged guest user could use this flaw to crash the QEMU...

6.1CVSS6.3AI score0.00485EPSS
Exploits1
Rows per page
Query Builder