13 matches found
Azure Linux 3.0 Security Update: qemu / qemu-kvm (CVE-2022-2962)
The version of qemu / qemu-kvm installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-2962 advisory. - A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or writes t...
CBL Mariner 2.0 Security Update: qemu / qemu-kvm (CVE-2022-2962)
The version of qemu / qemu-kvm installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-2962 advisory. - A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or writes t...
CVE-2022-2962 affecting package qemu for versions less than 6.2.0-18
CVE-2022-2962 affecting package qemu for versions less than 6.2.0-18. A patched version of the package is available...
CVE-2022-2962 affecting package qemu-kvm 4.2.0-43
CVE-2022-2962 affecting package qemu-kvm 4.2.0-43. A patched version of the package is available...
Ubuntu: Security Advisory (USN-5772-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-5772-1: QEMU vulnerabilities
It was discovered that QEMU incorrectly handled bulk transfers from SPICE clients. A remote attacker could use this issue to cause QEMU to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. CVE-2021-3682 It...
CVE-2022-2962
A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or writes to the rx/tx descriptor or copies the rx/tx frame, it doesn't check whether the destination address is its own MMIO address. This can cause the device to trigger MMIO handlers multiple times, possib...
CVE-2022-2962
A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or writes to the rx/tx descriptor or copies the rx/tx frame, it doesn't check whether the destination address is its own MMIO address. This can cause the device to trigger MMIO handlers multiple times, possib...
CVE-2022-2962
A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or writes to the rx/tx descriptor or copies the rx/tx frame, it doesn't check whether the destination address is its own MMIO address. This can cause the device to trigger MMIO handlers multiple times, possib...
CVE-2022-2962
A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or writes to the rx/tx descriptor or copies the rx/tx frame, it doesn't check whether the destination address is its own MMIO address. This can cause the device to trigger MMIO handlers multiple times, possib...
CVE-2022-2962
A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or writes to the rx/tx descriptor or copies the rx/tx frame, it doesn't check whether the destination address is its own MMIO address. This can cause the device to trigger MMIO handlers multiple times, possib...
CVE-2022-2962
A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or writes to the rx/tx descriptor or copies the rx/tx frame, it doesn't check whether the destination address is its own MMIO address. This can cause the device to trigger MMIO handlers multiple times, possib...
CVE-2022-2962
The CVE-2022-2962 issue affects the Tulip network device emulation in QEMU. The root cause is a DMA reentrancy flaw: during reads/writes to the rx/tx descriptor or when copying frames, Tulip does not verify that the destination is within its own MMIO space, allowing MMIO handlers to be triggered ...