3 matches found
CentOS 9 : qemu-kvm-7.1.0-2.el9
The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the qemu- kvm-7.1.0-2.el9 build changelog. - heap buffer overflow in DMA read data transfers rhel-9.0 CVE-2021-3507 Note that Nessus has not tested for this issue but has instead relied onl...
CVE-2021-3507
A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 including. It could occur in fdctrltransferhandler in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system. A privileged guest user could use this flaw to crash the QEMU...
CVE-2021-3507
CVE-2021-3507 refers to a heap buffer overflow in QEMU’s floppy disk emulator up to version 6.0.0, triggered in fdctrl_transfer_handler() (hw/block/fdc.c) during DMA read data transfers from the floppy to the guest. Reported impact includes host DoS via crashing the QEMU process and potential inf...