Lucene search
+L

21 matches found

CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.46 views

CVE-2022-0216 affecting package qemu-kvm 4.2.0-48

CVE-2022-0216 affecting package qemu-kvm 4.2.0-48. No patch is available currently...

4.4CVSS7.5AI score0.00405EPSS
Exploits1
OpenVAS
OpenVAS
added 2024/05/07 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2024:1395-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS7AI score0.01606EPSS
Exploits2References8
OSV
OSV
added 2024/04/23 9:16 a.m.7 views

SUSE-SU-2024:1395-1 Security update for qemu

This update for qemu fixes the following issues: - CVE-2021-3750: Fixed DMA reentrancy issue that could lead to use-after-free bsc1190011 - CVE-2022-0216: Fixed use-after-free in lsidomsgout function in hw/scsi/lsi53c895a.c bsc1198038 - CVE-2023-0330: Fixed DMA reentrancy issue that could lead to...

8.2CVSS8.1AI score0.01606EPSS
Exploits2References11
OpenVAS
OpenVAS
added 2023/06/05 12:0 a.m.41 views

SUSE: Security Advisory (SUSE-SU-2023:2358-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS6.9AI score0.00834EPSS
Exploits5References10
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2023:0761-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.00834EPSS
Exploits8References16
OSV
OSV
added 2023/03/21 8:54 a.m.13 views

SUSE-SU-2023:0840-1 Security update for qemu

This update for qemu fixes the following issues: - CVE-2022-4144: Fixed unsafe address translation can lead to out-of-bounds read in qxlphys2virt bsc1205808. - CVE-2021-3507: Fixed heap buffer overflow in DMA read data transfers in fdc bsc1185000. - CVE-2020-14394: Fixed infinite loop in...

8.8CVSS6.5AI score0.00643EPSS
Exploits5References14
OpenVAS
OpenVAS
added 2023/03/15 12:0 a.m.30 views

Debian: Security Advisory (DLA-3362-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.5AI score0.0183EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2023/01/04 12:0 a.m.39 views

EulerOS Virtualization 2.10.0 : qemu (EulerOS-SA-2022-2925)

According to the versions of the qemu packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Blo...

8.2CVSS7.3AI score0.00643EPSS
Exploits5References4
OpenVAS
OpenVAS
added 2022/12/30 12:0 a.m.36 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2022-2951)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS6.7AI score0.00643EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2022/12/30 12:0 a.m.35 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2022-2925)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS6.7AI score0.00643EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2022/12/13 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-5772-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS7.2AI score0.02904EPSS
Exploits3References2
Ubuntu
Ubuntu
added 2022/12/12 6:51 a.m.73 views

USN-5772-1: QEMU vulnerabilities

It was discovered that QEMU incorrectly handled bulk transfers from SPICE clients. A remote attacker could use this issue to cause QEMU to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. CVE-2021-3682 It...

8.5CVSS7.1AI score0.02904EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2022/11/09 12:0 a.m.31 views

Oracle Linux 8 : kvm_utils (ELSA-2022-9986)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-9986 advisory. - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 Tenable has extracted the preceding description block directly from the Oracl...

5.8CVSS6.4AI score0.01916EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/10/20 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2022:3660-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.5AI score0.00656EPSS
Exploits2References2
OSV
OSV
added 2022/10/19 12:0 p.m.6 views

SUSE-SU-2022:3660-1 Security update for qemu

This update for qemu fixes the following issues: - CVE-2022-0216: Fixed a use after free issue found in hw/scsi/lsi53c895a.c. bsc1198038 - CVE-2022-35414: Fixed an uninitialized read during address translation that leads to a crash. bsc1201367...

8.8CVSS6.4AI score0.00656EPSS
Exploits2References6
OpenVAS
OpenVAS
added 2022/10/17 12:0 a.m.42 views

SUSE: Security Advisory (SUSE-SU-2022:3594-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.2AI score0.00834EPSS
Exploits5References9
Tenable Nessus
Tenable Nessus
added 2022/10/14 12:0 a.m.73 views

Oracle Linux 8 : kvm_utils2 (ELSA-2022-9862)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9862 advisory. - A use-after-free vulnerability was found in the LSI53C895A SCSI Host Bus Adapter emulation of QEMU. The flaw occurs while processing repeated message...

8.2CVSS7.4AI score0.02701EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2022/10/11 12:0 a.m.49 views

Oracle Linux 9 : qemu-kvm (ELSA-2022-9869)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9869 advisory. - A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursoralloc function can lead to the allocation of a small...

8.2CVSS7.4AI score0.02701EPSS
Exploits3References5
OSV
OSV
added 2022/09/09 11:4 a.m.5 views

OESA-2022-1907 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. QEMU has two operating modes: Full system emulation. In this mode, QEMU emulates a full system for example a PC, including one or several processors and various peripherals. It can be used to launch...

4.4CVSS6.7AI score0.00405EPSS
Exploits1References2
CVE
CVE
added 2022/08/26 12:0 a.m.268 views

CVE-2022-0216

CVE-2022-0216 is a use-after-free vulnerability in the LSI53C895A SCSI HBA emulation of QEMU. The flaw occurs while processing repeated messages to cancel the current SCSI request via lsi_do_msgout, enabling a privileged guest user to crash the QEMU host process and cause a denial of service. Con...

4.4CVSS5.4AI score0.00405EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder