12 matches found
UBUNTU-CVE-2026-0665
An off-by-one error was found in QEMU's KVM Xen guest support. A malicious guest could use this flaw to trigger out-of-bounds heap accesses in the QEMU process via the emulated Xen physdev hypercall interface, leading to a denial of service or potential memory corruption...
UBUNTU-CVE-2024-26328
An issue was discovered in QEMU 7.1.0 through 8.2.1. registervfs in hw/pci/pciesriov.c does not set NumVFs to PCISRIOVTOTALVF, and thus interaction with hw/nvme/ctrl.c is mishandled...
QEMU 安全漏洞
QEMU Quick Emulator is a set of emulation processor software by Fabrice Bellard, a French personal developer. The software is fast and cross-platform. QEMU suffers from a buffer overflow vulnerability that stems from a lack of validation of the input data size or length in the readerstrecord and...
The vulnerability of the QEMU hardware emulation software, related to integer overflows, allows a hacker to trigger a service failure.
The vulnerability of the QEMU hardware emulation software is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to cause a system failure...
QEMU Input Validation Error Vulnerability (CNVD-2020-46814)
QEMU Quick Emulator is a set of simulation processor software by French software developer Fabrice Bellard. The software is fast, cross-platform and other characteristics. A security vulnerability exists in QEMU 5.0.0 and earlier versions. An attacker could exploit the vulnerability to cause a...
QEMU Resource Management Error Vulnerability
QEMU Quick Emulator is a set of simulation processor software by French software developer Fabrice Bellard. The software is fast, cross-platform and other characteristics. A resource management error vulnerability exists in the virtio-fs shared file system daemon virtiofsd implementation in QEMU...
DEBIAN-CVE-2020-7211
tftp.c in libslirp 4.1.0, as used in QEMU 4.2.0, does not prevent ..\ directory traversal on Windows...
PT-2020-5627 · Qemu +6 · Qemu +6
Name of the Vulnerable Software and Affected Versions: QEMU versions 4.0 through 4.1.0 Description: The issue is related to the rom copy function in hw/core/loader.c, which does not properly validate the relationship between two addresses. This allows attackers to trigger an invalid memory copy...
The vulnerability of the m_cat function in the QEMU hardware emulation software allows a perpetrator to compromise data integrity, gain unauthorized access to protected information, and cause service failures.
The vulnerability of the mcat function in the QEMU hardware emulation software is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to compromise data integrity, gain unauthorized access to protected information, and cause service failures...
QEMU Denial of Service Vulnerability (CNVD-2017-26591)
QEMU is an open source emulator software. QEMU suffers from a denial of service vulnerability. An attacker could exploit this issue to crash a QEMU instance, resulting in a denial of service condition...
The vulnerability of the QEMU hardware emulation software allows attackers to compromise privacy, integrity, and accessibility.
The vulnerability of the Virtio GPU emulation software in QEMU is related to an uncontrolled resource consumption. Exploiting this vulnerability can allow a local attacker to compromise data confidentiality, integrity, and accessibility by destroying the graphics processor resource in the...
RHEL 2.1 : kon2 (RHSA-2003:050)
A buffer overflow in kon2 allows local users to obtain root privileges. KON is a Kanji emulator for the console. There is a buffer overflow vulnerability in the command line parsing code portion of the kon program up to and including version 0.3.9b. This vulnerability, if appropriately exploited,...