Lucene search
K

515 matches found

Positive Technologies
Positive Technologies
added 2015/03/26 12:0 a.m.8 views

PT-2015-4876

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version Description The issue allows guest OS users to obtain sensitive information from uninitialized locations in host OS kernel memory. This is due to a problem in the drivers/xen/usbback/usbback.c...

2.1CVSS6.9AI score0.00413EPSS
Exploits0References187
RedHat Linux
RedHat Linux
added 2015/03/05 9:37 a.m.4 views

qemu: insufficient parameter validation during ram load

It was found that certain values that were read when loading RAM during migration were not validated. A user able to alter the savevm data either on the disk or over the wire during migration could use either of these flaws to corrupt QEMU process memory on the destination host, which could...

7.5CVSS7.8AI score0.04115EPSS
Exploits0References4
VMware
VMware
added 2015/01/25 12:0 a.m.512 views

VMSA-2015-0001:VMware vCenter Server, ESXi, Workstation, Player, and Fusion updates address security issues

VMSA-2015-0001.2 VMware vCenter Server, ESXi, Workstation, Player, and Fusion updates address security issues VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2015-0001.2 VMware Security Advisory Synopsis: VMware vCenter Server, ESXi, Workstation, Player, and Fusion updates...

7.1CVSS5.7AI score0.99999EPSS
Exploits8References3Affected Software5
RedHat Linux
RedHat Linux
added 2014/12/02 4:59 p.m.4 views

Qemu: information leakage when guest sets high resolution

An information leak flaw was found in the way QEMU's VGA emulator accessed frame buffer memory for high resolution displays. A privileged guest user could use this flaw to leak memory contents of the host to the guest by setting the display to use a high resolution in the guest...

2.1CVSS6.8AI score0.0045EPSS
Exploits0References4
OSV
OSV
added 2014/11/13 12:54 p.m.4 views

USN-2409-1 qemu, qemu-kvm vulnerabilities

Laszlo Ersek discovered that QEMU incorrectly handled memory in the vga device. A malicious guest could possibly use this issue to read arbitrary host memory. This issue only affected Ubuntu 14.04 LTS and Ubuntu 14.10. CVE-2014-3615 Xavier Mehrenberger and Stephane Duverger discovered that QEMU...

7.2CVSS7AI score0.03742EPSS
Exploits0References7
OSV
OSV
added 2014/11/01 11:55 p.m.2 views

DEBIAN-CVE-2014-3615

The VGA emulator in QEMU allows local guest users to read host memory by setting the display to a high resolution...

2.1CVSS6.4AI score0.0045EPSS
Exploits0References1
NVD
NVD
added 2014/11/01 11:55 p.m.24 views

CVE-2014-3615

The VGA emulator in QEMU allows local guest users to read host memory by setting the display to a high resolution...

2.1CVSS8.1AI score0.0045EPSS
Exploits0References12
OSV
OSV
added 2014/11/01 11:55 p.m.2 views

CVE-2014-3615

The VGA emulator in QEMU allows local guest users to read host memory by setting the display to a high resolution...

8.4AI score
Exploits0References15
Prion
Prion
added 2014/11/01 11:55 p.m.29 views

Design/Logic Flaw

The VGA emulator in QEMU allows local guest users to read host memory by setting the display to a high resolution...

2.1CVSS6.2AI score0.0045EPSS
Exploits0References12Affected Software12
Cvelist
Cvelist
added 2014/11/01 11:0 p.m.27 views

CVE-2014-3615

The VGA emulator in QEMU allows local guest users to read host memory by setting the display to a high resolution...

6.3AI score0.0045EPSS
Exploits0References12
CVE
CVE
added 2014/11/01 11:0 p.m.123 views

CVE-2014-3615

CVE-2014-3615 concerns the VGA emulator in QEMU. The issue allows a privileged guest (local to the host) to read host memory by setting the display to a high resolution, due to a memory-access flaw in VGA emulation. Public context in connected advisories confirms this was addressed by backporting...

2.1CVSS6.1AI score0.0045EPSS
Exploits0References12Affected Software1
Debian CVE
Debian CVE
added 2014/11/01 11:0 p.m.40 views

CVE-2014-3615

The VGA emulator in QEMU allows local guest users to read host memory by setting the display to a high resolution...

2.1CVSS6.3AI score0.0045EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2014/11/01 12:0 a.m.39 views

CVE-2014-3615

The VGA emulator in QEMU allows local guest users to read host memory by setting the display to a high resolution...

2.1CVSS6.8AI score0.0045EPSS
Exploits0References2
OSV
OSV
added 2014/11/01 12:0 a.m.3 views

UBUNTU-CVE-2014-3615

The VGA emulator in QEMU allows local guest users to read host memory by setting the display to a high resolution...

2.1CVSS6.8AI score0.0045EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2014/10/20 5:30 p.m.12 views

Qemu: information leakage when guest sets high resolution

An information leak flaw was found in the way QEMU's VGA emulator accessed frame buffer memory for high resolution displays. A privileged guest user could use this flaw to leak memory contents of the host to the guest by setting the display to use a high resolution in the guest...

2.1CVSS6.8AI score0.0045EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2014/09/22 4:0 a.m.7 views

Qemu: qcow1: validate L2 table size to avoid integer overflows

An integer overflow flaw was found in the QEMU block driver for QCOW version 1 disk images. A user able to alter the QEMU disk image files loaded by a guest could use this flaw to corrupt QEMU process memory on the host, which could potentially result in arbitrary code execution on the host with...

7.5CVSS7.2AI score0.02116EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2014/09/22 4:0 a.m.6 views

Qemu: qcow1: validate image size to avoid out-of-bounds memory access

An integer overflow flaw was found in the QEMU block driver for QCOW version 1 disk images. A user able to alter the QEMU disk image files loaded by a guest could use this flaw to corrupt QEMU process memory on the host, which could potentially result in arbitrary code execution on the host with...

4.6CVSS7.2AI score0.00605EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2014/09/15 6:12 a.m.10 views

Qemu: qcow1: validate image size to avoid out-of-bounds memory access

An integer overflow flaw was found in the QEMU block driver for QCOW version 1 disk images. A user able to alter the QEMU disk image files loaded by a guest could use this flaw to corrupt QEMU process memory on the host, which could potentially result in arbitrary code execution on the host with...

4.6CVSS7.2AI score0.00605EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2014/09/09 7:6 p.m.3 views

Qemu: qcow1: validate L2 table size to avoid integer overflows

An integer overflow flaw was found in the QEMU block driver for QCOW version 1 disk images. A user able to alter the QEMU disk image files loaded by a guest could use this flaw to corrupt QEMU process memory on the host, which could potentially result in arbitrary code execution on the host with...

7.5CVSS7.2AI score0.02116EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2014/09/09 7:6 p.m.5 views

Qemu: qcow1: validate image size to avoid out-of-bounds memory access

An integer overflow flaw was found in the QEMU block driver for QCOW version 1 disk images. A user able to alter the QEMU disk image files loaded by a guest could use this flaw to corrupt QEMU process memory on the host, which could potentially result in arbitrary code execution on the host with...

4.6CVSS7.2AI score0.00605EPSS
Exploits1References4
Rows per page
Query Builder