28 matches found
Astra Linux – Vulnerability in Qemu
A reentrancy issue related to DMA operations led to a use-after-free error in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service...
EUVD-2017-18245
Malware in sbrugna...
EUVD-2023-43711
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2023-3019
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to...
RHEL 9 : qemu-kvm (RHSA-2024:2135)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:2135 advisory. Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide th...
RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2024:0404)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0404 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contai...
EulerOS Virtualization 2.11.0 : qemu (EulerOS-SA-2023-3082)
According to the versions of the qemu package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the 9p passthrough filesystem 9pfs implementation in QEMU. The 9pfs server did not prohibit opening special file...
CentOS 8 : virt:rhel and virt-devel:rhel (CESA-2024:0135)
The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2024:0135 advisory. - A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to...
RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2024:0135)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:0135 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packag...
Denial Of Service (DOS)
QEMU virtual machine monitor is vulnerable to Denial Of Service DOS. The vulnerability is caused due to a DMA reentrancy issue leading to a use-after-free error found in the e1000e NIC emulation code. This can lead to a privileged guest user crash the QEMU process on the host, resulting in a Deni...
QEMU < 7.2.4 / < 8.0.3 Multiple Vulnerabilites
The version of QEMU installed on the remote Windows host is affected by multiple vulnerabilities, as follows: - A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on...
QEMU Memory Misreference Vulnerability (CNVD-2023-61010)
QEMU is a suite of analog processor software from the French individual developer Fabrice Bellard. The software is fast and cross-platform. QEMU suffers from a memory misreference vulnerability that stems from a confusion in the instructions responsible for freeing memory in the e1000e NIC...
AZL-35595 CVE-2023-3019 affecting package qemu for versions less than 6.2.0-23
A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service...
CVE-2023-3019
A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service...
CVE-2023-3019
A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service...
CVE-2023-3019
A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service...
PT-2023-9224 · Qemu +11 · Qemu +11
Name of the Vulnerable Software and Affected Versions: QEMU affected versions not specified Description: A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code. This issue could allow a privileged guest user to crash the QEMU process on the host,...
Denial Of Service (DoS)
QEMU is vulnerable to denial of serviceDoS attacks. This occurs when QEMU built with the e1000e NIC emulation support allowing local guest OS privileged users to cause a denial of service infinite loop via vectors related to setting the initial receive / transmit descriptor head TDH/RDH outside t...
Fedora 25 : 2:qemu (2017-f941184db1)
CVE-2017-7718: cirrus: OOB read access issue bz 1443443 - CVE-2016-9603: cirrus: heap buffer overflow via vnc connection bz 1432040 - CVE-2017-7377: 9pfs: fix file descriptor leak bz 1437872 - CVE-2017-7980: cirrus: OOB r/w access issues in bitblt bz 1444372 - CVE-2017-8112: vmwpvscsi: infinite...
Debian DSA-3920-1 : qemu - security update
Multiple vulnerabilities were found in qemu, a fast processor emulator : - CVE-2017-9310 Denial of service via infinite loop in e1000e NIC emulation. - CVE-2017-9330 Denial of service via infinite loop in USB OHCI emulation. - CVE-2017-9373 Denial of service via memory leak in IDE AHCI emulation....