106 matches found
ALPINE-CVE-2017-5931
Integer overflow in hw/virtio/virtio-crypto.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service QEMU process crash or possibly execute arbitrary code on the host via a crafted virtio-crypto request, which triggers a heap-based buffer overflow...
Qemu: display: cirrus: oob access while doing bitblt copy backward mode
Quick emulator QEMU built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could occur while copying VGA data via bitblt copy in backward mode. A privileged user inside a guest could use this flaw to crash the QEMU process resulting in DoS or...
The vulnerability of VMware Workstation’s hypervisor allows users of the guest operating system to execute code on the host operating system.
The vulnerability of the TPView.dll library in VMware Workstation involves resource management errors. Exploiting this vulnerability allows users of the guest operating system to execute code on the host operating system...
Qemu: nvram: OOB r/w access in processing firmware configurations
An out-of-bounds read/write flaw was discovered in the way QEMU's Firmware Configuration device emulation processed certain firmware configurations. A privileged CAPSYSRAWIO guest user could use this flaw to crash the QEMU process instance or, potentially, execute arbitrary code on the host with...
Qemu: qcow1: validate image size to avoid out-of-bounds memory access
An integer overflow flaw was found in the QEMU block driver for QCOW version 1 disk images. A user able to alter the QEMU disk image files loaded by a guest could use this flaw to corrupt QEMU process memory on the host, which could potentially result in arbitrary code execution on the host with...
UBUNTU-CVE-2013-4536
An user able to alter the savevm data either on the disk or over the wire during migration could use this flaw to to corrupt QEMU process memory on the destination host, which could potentially result in arbitrary code execution on the host with the privileges of the QEMU process...