307 matches found
SUSE-SU-2015:1409-1 Security update for kvm
kvm was updated to fix one security issue. This security issue was fixed: - CVE-2015-5154: Host code execution via IDE subsystem CD-ROM bsc938344...
SUSE-SU-2015:1426-1 Security update for kvm
kvm was updated to fix two security issues. The following vulnerabilities were fixed: - CVE-2015-5154: Host code execution via IDE subsystem CD-ROM bsc938344. - CVE-2015-3209: Fix buffer overflow in pcnet emulation bsc932770...
SUSE SLED11 / SLES11 Security Update : xen (SUSE-SU-2015:1299-1)
xen was updated to fix two security issues. These security issues were fixed : - CVE-2015-3259: xl command line config handling stack overflow bsc935634, XSA-137. - CVE-2015-5154: Host code execution via IDE subsystem CD-ROM bsc938344. The update package also includes non-security fixes. See...
qemu: ide: atapi: heap overflow during I/O buffer memory access
A heap buffer overflow flaw was found in the way QEMU's IDE subsystem handled I/O buffer access while processing certain ATAPI commands. A privileged guest user in a guest with the CDROM drive enabled could potentially use this flaw to execute arbitrary code on the host with the privileges of the...
SUSE-SU-2015:1455-1 Security update for kvm
kvm was updated to fix one security issue. This security issue was fixed: - CVE-2015-5154: Host code execution via IDE subsystem CD-ROM bsc938344...
SUSE-SU-2015:1302-1 Security update for xen
xen was updated to fix two security issues. These security issues were fixed: - CVE-2015-3259: xl command line config handling stack overflow bsc935634, XSA-137. - CVE-2015-5154: Host code execution via IDE subsystem CD-ROM bsc938344. These non-security issues were fixed: - Restart of xencommons...
qemu: pcnet: multi-tmd buffer overflow in the tx path
A flaw was found in the way QEMU's AMD PCnet Ethernet emulation handled multi-TMD packets with a length above 4096 bytes. A privileged guest user in a guest with an AMD PCNet ethernet card enabled could potentially use this flaw to execute arbitrary code on the host with the privileges of the...
QEMU 'pit_ioport_read()' function memory corruption vulnerability
QEMU is an open source emulator software. QEMU has a memory corruption vulnerability in the pitioportread function, which allows an attacker to exploit this vulnerability to execute arbitrary code on the host...
UBUNTU-CVE-2015-3214
The pitioportread in i8254.c in the Linux kernel before 2.6.33 and QEMU before 2.3.1 does not distinguish between read lengths and write lengths, which might allow guest OS users to execute arbitrary code on the host OS by triggering use of an invalid index...
Xen QEMU PCNET Controller Heap Overflow Vulnerability
Xen is a virtualization technology for the Linux kernel that allows multiple operating systems to run simultaneously. A heap overflow vulnerability exists in the Xen QEMU PCNET device controller, which allows an attacker to execute arbitrary code on the host in the context of a QEMU process...
qemu: pcnet: multi-tmd buffer overflow in the tx path
A flaw was found in the way QEMU's AMD PCnet Ethernet emulation handled multi-TMD packets with a length above 4096 bytes. A privileged guest user in a guest with an AMD PCNet ethernet card enabled could potentially use this flaw to execute arbitrary code on the host with the privileges of the...
qemu: pcnet: multi-tmd buffer overflow in the tx path
A flaw was found in the way QEMU's AMD PCnet Ethernet emulation handled multi-TMD packets with a length above 4096 bytes. A privileged guest user in a guest with an AMD PCNet ethernet card enabled could potentially use this flaw to execute arbitrary code on the host with the privileges of the...
qemu: fdc: out-of-bounds fifo buffer memory access
An out-of-bounds memory access flaw was found in the way QEMU's virtual Floppy Disk Controller FDC handled FIFO buffer access while processing certain FDC commands. A privileged guest user could use this flaw to crash the guest or, potentially, execute arbitrary code on the host with the privileg...
qemu: fdc: out-of-bounds fifo buffer memory access
An out-of-bounds memory access flaw was found in the way QEMU's virtual Floppy Disk Controller FDC handled FIFO buffer access while processing certain FDC commands. A privileged guest user could use this flaw to crash the guest or, potentially, execute arbitrary code on the host with the privileg...
qemu: fdc: out-of-bounds fifo buffer memory access
An out-of-bounds memory access flaw was found in the way QEMU's virtual Floppy Disk Controller FDC handled FIFO buffer access while processing certain FDC commands. A privileged guest user could use this flaw to crash the guest or, potentially, execute arbitrary code on the host with the privileg...
qemu: fdc: out-of-bounds fifo buffer memory access
An out-of-bounds memory access flaw was found in the way QEMU's virtual Floppy Disk Controller FDC handled FIFO buffer access while processing certain FDC commands. A privileged guest user could use this flaw to crash the guest or, potentially, execute arbitrary code on the host with the privileg...
qemu: fdc: out-of-bounds fifo buffer memory access
An out-of-bounds memory access flaw was found in the way QEMU's virtual Floppy Disk Controller FDC handled FIFO buffer access while processing certain FDC commands. A privileged guest user could use this flaw to crash the guest or, potentially, execute arbitrary code on the host with the privileg...
qemu: fdc: out-of-bounds fifo buffer memory access
An out-of-bounds memory access flaw was found in the way QEMU's virtual Floppy Disk Controller FDC handled FIFO buffer access while processing certain FDC commands. A privileged guest user could use this flaw to crash the guest or, potentially, execute arbitrary code on the host with the privileg...
Qemu: qcow1: validate L2 table size to avoid integer overflows
An integer overflow flaw was found in the QEMU block driver for QCOW version 1 disk images. A user able to alter the QEMU disk image files loaded by a guest could use this flaw to corrupt QEMU process memory on the host, which could potentially result in arbitrary code execution on the host with...
DEBIAN-CVE-2014-0049
Buffer overflow in the completeemulatedmmio function in arch/x86/kvm/x86.c in the Linux kernel before 3.13.6 allows guest OS users to execute arbitrary code on the host OS by leveraging a loop that triggers an invalid memory copy affecting certain cancelworkitem data...