Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2026-1641)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-8073-1: QEMU vulnerabilities

It was discovered that the UHCI controller implementation of QEMU could be brought into an invalid state. An attacker inside the guest could possibly use this issue to cause QEMU to crash, resulting in a denial of service. CVE-2024-8354 It was discovered that QEMU incorrectly handled memory durin...

SUSE-SU-2026:0288-1 Security update for qemu

This update for qemu fixes the following issues: Security issues fixed: - CVE-2025-12464: stack-based buffer overflow in the e1000 network device operations can be exploited by a malicious guest user to crash the QEMU process on the host bsc1253002. - CVE-2025-11234: use-after-free in WebSocket...

Security update for qemu

This update for qemu fixes the following issues: Security issues fixed: CVE-2025-12464: stack-based buffer overflow in the e1000 network device operations can be exploited by a malicious guest user to crash the QEMU process on the host bsc1253002. CVE-2025-11234: use-after-free in WebSocket...

SUSE-SU-2026:20008-1 Security update for qemu

This update for qemu fixes the following issues: Security issues fixed: - CVE-2025-12464: stack-based buffer overflow in the e1000 network device operations can be exploited by a malicious guest user to crash the QEMU process on the host bsc1253002. - CVE-2025-11234: use-after-free in WebSocket...

Qemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode

...

EUVD-2025-37403

A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...

AZL-69631 CVE-2025-12464 affecting package qemu for versions less than 8.2.0-25

A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...

CVE-2025-12464

CVE-2025-12464 affects the QEMU e1000 network device. The root cause is a stack-based buffer overflow in the e1000_receive_iov path when processing short frames in loopback mode after padding logic was moved to net core. This can crash the QEMU host process (DoS). Public docs show fixes via SUSE/...

CVE-2025-12464 Qemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode

A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...

CVE-2025-12464 Qemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode

A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...

PT-2025-44674

Name of the Vulnerable Software and Affected Versions QEMU affected versions not specified Description A stack-based buffer overflow exists in the QEMU e1000 network device. The issue is due to the device’s receive code still processing short frames in loopback mode, despite the padding code bein...

EUVD-2012-5949

Malware in sbrugna...

EUVD-2018-18717

Malware in sbrugna...

CVE-2022-35867

This vulnerability allows local attackers to escalate privileges on affected installations of xhyve. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the e1000 virtual devic...

QEMU 安全漏洞

QEMU Quick Emulator is a set of simulation processor software by Fabrice Bellard, a French individual developer. The software is fast and cross-platform. The e1000 of QEMU has a security vulnerability that can be exploited by attackers to trigger a denial of service...

FreeBSD : FreeBSD -- Insufficient validation of guest-supplied data (e1000 device) (499b22a3-f680-11e9-a87f-a4badb2f4699)

The e1000 network adapters permit a variety of modifications to an Ethernet packet when it is being transmitted. These include the insertion of IP and TCP checksums, insertion of an Ethernet VLAN header, and TCP segmentation offload 'TSO'. The e1000 device model uses an on-stack buffer to generat...

VMware Workstation e1000 Buffer Overflow Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of VMware Workstation. An attacker must first obtain the ability to execute low-privileged code on the guest system in order to exploit this vulnerability. The specific flaw exists within the handling ...

VMWare Workstation and Fusion e1000 Buffer Overflow Vulnerability

VMWare Workstation and Fusion are both desktop virtual computer software from VMware. The former provides virtual machine functionality that allows you to run several different operating systems at the same time, while the latter is virtual machine software used to run Windows applications on a...

CVE-2018-6973

VMware Workstation 14.x before 14.1.3 and Fusion 10.x before 10.1.3 contain an out-of-bounds write vulnerability in the e1000 device. This issue may allow a guest to execute code on the host...