MiracleLinux 4 : qemu-kvm-0.12.1.2-2.209.AXS4.4 (AXSA:2012-478:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-478:01 advisory. KVM for Kernel-based Virtual Machine is a full virtualization solution for Linux on x86 hardware. Using KVM, one can run multiple virtual machines...

SUSE CVE-2012-0029

Heap-based buffer overflow in the processtxdesc function in the e1000 emulation hw/e1000.c in qemu-kvm 0.12, and possibly other versions, allows guest OS users to cause a denial of service QEMU crash and possibly execute arbitrary code via crafted legacy mode packets...

QEMU: net: e1000: infinite loop while processing transmit descriptors

An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. This issue occurs while processing transmits tx descriptors in processtxdesc if various descriptor fields are initialized with invalid values. This flaw allows a guest to consume CPU cycles on the host, resulting in a denial o...

USN-5010-1 qemu vulnerabilities

Lei Sun discovered that QEMU incorrectly handled certain MMIO operations. An attacker inside the guest could possibly use this issue to cause QEMU to crash, resulting in a denial of service. CVE-2020-15469 Wenxiang Qian discovered that QEMU incorrectly handled certain ATAPI commands. An attacker...

PT-2019-17778 · Freebsd · Freebsd

Name of the Vulnerable Software and Affected Versions: FreeBSD versions 11.2-RELEASE through 11.2-RELEASE-p12 FreeBSD versions 11.3-RELEASE through 11.3-RELEASE-p1 FreeBSD versions 12.0-RELEASE through 12.0-RELEASE-p8 Description: The issue arises from the bhyve e1000 device emulation, which uses...

DEBIAN-CVE-2016-1981

QEMU aka Quick Emulator built with the e1000 NIC emulation support is vulnerable to an infinite loop issue. It could occur while processing data via transmit or receive descriptors, provided the initial receive/transmit descriptor head TDH/RDH is set outside the allocated descriptor buffer. A...

QEMU Denial of Service Vulnerability (CNVD-2015-06502)

QEMU is a suite of analog processor software developed by French programmer Fabrice Bellard. A security vulnerability exists in the QEMU emulator, supported using the e1000 NIC emulation, which can be exploited by an attacker to cause a denial of service infinite loop...

openSUSE Security Update : Xen (openSUSE-SU-2012:0548-1)

This is a XEN bugfix update fixing lots of bugs and one security issue. CVE-2012-0029: Heap-based buffer overflow in the processtxdesc function in the e1000 emulation hw/e1000.c in qemu-kvm 0.12, and possibly other versions, allows guest OS users to cause a denial of service QEMU crash and possib...

Mandriva Linux Security Advisory : qemu (MDVSA-2013:121)

Updated qemu packages fix security vulnerability : A flaw was found in how qemu, in snapshot mode -snapshot command line argument, handled the creation and opening of the temporary file used to store the difference of the virtualized guest's read-only image and the current state. In snapshot mode...

Debian Security Advisory DSA 2619-1 (xen-qemu-dm-4.0 - buffer overflow)

A buffer overflow was found in the e1000 emulation, which could be triggered when processing jumbo frames. OpenVAS Vulnerability Test $Id: deb2619.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generated from advisory DSA 2619-1 using nvtgen 1.0 Script version: 1.0 Author: Greenbone Networks...

DSA-2619-1 xen-qemu-dm-4.0 - buffer overflow

Bulletin has no description...

Debian: Security Advisory (DSA-2619-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-2608-1 : qemu - buffer overflow

It was discovered that the e1000 emulation code in QEMU does not enforce frame size limits in the same way as the real hardware does. This could trigger buffer overflows in the guest operating system driver for that network card, assuming that the host system does not discard such frames which it...

DSA-2607-1 qemu-kvm - buffer overflow

Bulletin has no description...

DSA-2608-1 qemu - buffer overflow

Bulletin has no description...

Debian Security Advisory DSA 2608-1 (qemu - buffer overflow)

It was discovered that the e1000 emulation code in QEMU does not enforce frame size limits in the same way as the real hardware does. This could trigger buffer overflows in the guest operating system driver for that network card, assuming that the host system does not discard such frames which it...

Debian: Security Advisory (DSA-2607-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DSA-2608-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 16 : xen-4.1.2-6.fc16 (2012-1375)

Fix buffer overflow in e1000 emulation for HVM guests CVE-2012-0029, Start building xen's ocaml libraries Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much...

qemu: e1000: process_tx_desc legacy mode packets heap overflow

Heap-based buffer overflow in the processtxdesc function in the e1000 emulation hw/e1000.c in qemu-kvm 0.12, and possibly other versions, allows guest OS users to cause a denial of service QEMU crash and possibly execute arbitrary code via crafted legacy mode packets...