Lucene search
+L

5 matches found

OSV
OSV
added 2 days ago4 views

RLSA-2026:39311 Low: qemu-kvm security update

Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Security Fixes: qemu-kvm: Heap buffer overflow in virtio-blk SCSI request handling...

6.7CVSS6.2AI score0.00122EPSS
Exploits0References2
OSV
OSV
added 2026/07/09 12:54 p.m.3 views

OESA-2026-2951 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A flaw was found in QEMU's virtio-blk device. The issue arises because the device does not properly validate the size of input descriptors before writing data. A malicious guest with high...

6.7CVSS6AI score0.00122EPSS
Exploits0References2
OSV
OSV
added 2026/07/07 5:20 p.m.2 views

OPENSUSE-SU-2026:21253-1 Security update for qemu

This update for qemu fixes the following issues: Update to version 10.0.11. Security issues fixed: - CVE-2026-3886: integer overflow leading to privilege escalation due to lack of proper validation of user-supplied data in the virtio-gpu driver bsc1268061. - CVE-2026-48914: heap buffer overflow d...

6.7CVSS7AI score0.00122EPSS
Exploits0References8
OSV
OSV
added 2026/07/07 5:18 p.m.2 views

SUSE-SU-2026:22576-1 Security update for qemu

This update for qemu fixes the following issues: Update to version 10.0.11. Security issues fixed: - CVE-2026-3886: integer overflow leading to privilege escalation due to lack of proper validation of user-supplied data in the virtio-gpu driver bsc1268061. - CVE-2026-48914: heap buffer overflow d...

6.7CVSS6.2AI score0.00122EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2026/06/12 9:42 a.m.15 views

CVE-2026-48914

A flaw was found in QEMU's virtio-blk device. The issue arises because the device does not properly validate the size of input descriptors before writing data. A malicious guest with high privileges could exploit this vulnerability by submitting a malformed virtio-blk SCSI request, leading to an...

6.7CVSS5.3AI score0.00122EPSS
Exploits0
Rows per page
Query Builder