Lucene search
K

18 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2021-4158

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process...

6CVSS6.5AI score0.00375EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.14 views

Azure Linux 3.0 Security Update: qemu (CVE-2021-4158)

The version of qemu installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-4158 advisory. - A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the...

6CVSS6.6AI score0.00375EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/08/06 12:0 a.m.29 views

CBL Mariner 2.0 Security Update: qemu (CVE-2021-4158)

The version of qemu installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-4158 advisory. - A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the...

6CVSS6.7AI score0.00375EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.40 views

RHEL 8 : av_qemu-kvm (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - QEMU: NULL pointer dereference in pciwrite in hw/acpi/pcihp.c CVE-2021-4158 - QEMU: am53c974: denial of...

6CVSS7.2AI score0.00376EPSS
Exploits2References2
CBLMariner
CBLMariner
added 2024/03/19 5:21 p.m.26 views

CVE-2021-4158 affecting package qemu for versions less than 6.2.0-18

CVE-2021-4158 affecting package qemu for versions less than 6.2.0-18. A patched version of the package is available...

6CVSS6.9AI score0.00375EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2022/11/15 10:26 a.m.58 views

Moderate: Red Hat Security Advisory: qemu-kvm security, bug fix, and enhancement update

An update for qemu-kvm is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

8.2CVSS6.9AI score0.0053EPSS
Exploits4References52
AlmaLinux
AlmaLinux
added 2022/11/15 12:0 a.m.62 views

Moderate: qemu-kvm security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. The following packages have been upgraded to a later upstream version: qemu-kvm 7.0.0...

8.2CVSS7.9AI score0.0053EPSS
Exploits4References10
CBLMariner
CBLMariner
added 2022/09/16 6:5 a.m.18 views

CVE-2021-4158 affecting package qemu for versions less than 6.2.0-7

CVE-2021-4158 affecting package qemu for versions less than 6.2.0-7. A patched version of the package is available...

6CVSS6.9AI score0.00375EPSS
Exploits1
OSV
OSV
added 2022/08/24 4:15 p.m.30 views

CVE-2021-4158

A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition...

6CVSS5.7AI score0.00375EPSS
Exploits1References5
CVE
CVE
added 2022/08/24 3:10 p.m.265 views

CVE-2021-4158

CVE-2021-4158 is a NULL pointer dereference in QEMU’s ACPI code, specifically a NULL pointer dereference in pci_write() within hw/acpi/pcihp.c, which can be triggered by a malicious, privileged guest user to crash QEMU on the host and cause a denial-of-service. The issue is evidenced across multi...

6CVSS6.1AI score0.00375EPSS
Exploits1References5Affected Software1
Debian CVE
Debian CVE
added 2022/08/24 3:10 p.m.28 views

CVE-2021-4158

A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition...

6CVSS6.3AI score0.00375EPSS
Exploits1
OSV
OSV
added 2022/07/22 11:4 a.m.4 views

OESA-2022-1772 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in ...

7.8CVSS6.5AI score0.00375EPSS
Exploits1References3
OSV
OSV
added 2022/05/10 7:59 a.m.33 views

ALSA-2022:1759 Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the...

7.8CVSS7.9AI score0.04794EPSS
Exploits4References30
Rockylinux
Rockylinux
added 2022/05/10 7:59 a.m.34 views

virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

An update is available for libguestfs, libnbd, libtpms, libguestfs-winsupport, nbdkit, supermin, libiscsi, hivex, libvirt, netcf, perl-Sys-Virt, seabios, qemu-kvm, swtpm, virt-v2v, sgabios, libvirt-dbus, libvirt-python. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS...

7.8CVSS8.1AI score0.04794EPSS
Exploits4
OpenVAS
OpenVAS
added 2022/03/01 12:0 a.m.33 views

Ubuntu: Security Advisory (USN-5307-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS6.9AI score0.02904EPSS
Exploits3References2
ALT Linux
ALT Linux
added 2022/03/01 12:0 a.m.145 views

Security fix for the ALT Linux 10 package qemu version 6.1.1-alt1

6.1.1-alt1 built March 1, 2022 Alexey Shabalin in task 295902 --- Feb. 24, 2022 Alexey Shabalin - 6.1.1 - Fixes for the following security vulnerabilities: + CVE-2021-3713 uas: add stream number sanity checks + CVE-2021-3947 hw/nvme: fix buffer overrun in nvmechangednslist + CVE-2021-20196...

4.6CVSS1.8AI score0.00643EPSS
Exploits5
Ubuntu
Ubuntu
added 2022/02/28 1:3 p.m.163 views

USN-5307-1: QEMU vulnerabilities

Gaoning Pan discovered that QEMU incorrectly handled the floppy disk emulator. An attacker inside the guest could use this issue to cause QEMU to crash, resulting in a denial of service. CVE-2021-20196 Gaoning Pan discovered that the QEMU vmxnet3 NIC emulator incorrectly handled certain values. A...

8.5CVSS7.3AI score0.02904EPSS
Exploits3
Oracle linux
Oracle linux
added 2022/02/05 12:0 a.m.54 views

qemu security update

15:4.2.1-15.el7 - Document CVE-2021-4158 and CVE-2021-3947 as fixed Mark Kanda Orabug: 33719302 Orabug: 33754145 CVE-2021-3947 CVE-2021-4158 - hw/block/fdc: Kludge missing floppy drive to fix CVE-2021-20196 Philippe Mathieu-Daude Orabug: 32439466 CVE-2021-20196 - hw/block/fdc: Extract...

6.5CVSS0.3AI score0.00587EPSS
Exploits4
Rows per page
Query Builder