Linux kernel information disclosure vulnerability (CNVD-2018-03263)

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. An information disclosure vulnerability exists in the acpismbushcadd function in drivers/acpi/sbshc.c in the Linux...

UBUNTU-CVE-2018-5750

The acpismbushcadd function in drivers/acpi/sbshc.c in the Linux kernel through 4.14.15 allows local users to obtain sensitive address information by reading dmesg data from an SBS HC printk call...

The vulnerability of the Android CAF-release operating system, which stems from insufficient validation of input data, allows a malicious actor to improperly check the command length.

The vulnerability of the Android CAF-release operating system exists due to insufficient checks on input data. Exploiting this vulnerability allows a malicious actor to improperly verify the length of the HCI command remotely...

Google Android Qualcomm Wconnect Unauthorized Operation Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA, and Qualcomm Wconnect is one of Qualcomm's tools for connecting PCs to cell phones. A security vulnerability exists in Qualcomm Wconnect for Android, which stems from a failure of...

Qemu: usb: xhci infinite recursive call via xhci_kick_ep

QEMU aka Quick Emulator, when built with USB xHCI controller emulator support, allows local guest OS privileged users to cause a denial of service infinite recursive call via vectors involving control transfer descriptors sequencing...

Qemu: usb: ehci host memory leakage during hotunplug

Memory leak in QEMU aka Quick Emulator, when built with USB EHCI Emulation support, allows local guest OS privileged users to cause a denial of service memory consumption by repeatedly hot-unplugging the device...

Qemu: usb: xHCI: infinite loop vulnerability in xhci_ring_fetch

The xhciringfetch function in hw/usb/hcd-xhci.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service infinite loop and QEMU process crash by leveraging failure to limit the number of link Transfer Request Blocks TRB to process...

Qemu: usb: xhci infinite recursive call via xhci_kick_ep

QEMU aka Quick Emulator, when built with USB xHCI controller emulator support, allows local guest OS privileged users to cause a denial of service infinite recursive call via vectors involving control transfer descriptors sequencing...

DEBIAN-CVE-2017-9374

Memory leak in QEMU aka Quick Emulator, when built with USB EHCI Emulation support, allows local guest OS privileged users to cause a denial of service memory consumption by repeatedly hot-unplugging the device...

UBUNTU-CVE-2017-9330

QEMU aka Quick Emulator before 2.9.0, when built with the USB OHCI Emulation support, allows local guest OS users to cause a denial of service infinite loop by leveraging an incorrect return value, a different vulnerability than CVE-2017-6505...

DEBIAN-CVE-2017-5973

The xhcikickepctx function in hw/usb/hcd-xhci.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service infinite loop and QEMU process crash via vectors related to control transfer descriptor sequence...

DEBIAN-CVE-2017-5667

The sdhcisdmatransfermultiblocks function in hw/sd/sdhci.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service out-of-bounds heap access and crash or execute arbitrary code on the QEMU host via vectors involving the data transfer length...

QEMU 'hw/usb/hcd-ohci.c' Denial of Service Vulnerability

QEMU aka Quick Emulator is a set of simulation processor software developed by French programmer Fabrice Bellard. The software is fast and cross-platform. A denial of service vulnerability exists in QEMU 'hw/usb/hcd-ohci.c'. An attacker exploits this vulnerability to cause a QEMU instance to cras...

UBUNTU-CVE-2016-9911

Quick Emulator Qemu built with the USB EHCI Emulation support is vulnerable to a memory leakage issue. It could occur while processing packet data in 'ehciinittransfer'. A guest user/process could use this issue to leak host memory, resulting in DoS for a host...

ALPINE-CVE-2016-7995

Memory leak in the ehciprocessitd function in hw/usb/hcd-ehci.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service memory consumption via a large number of crafted buffer page select PG indexes...

QEMU 'hw/usb/hcd-xhci.c' Information Disclosure Vulnerability

QEMU is the law suite of analog processor software. An information disclosure vulnerability exists in QEMU 'hw/usb/hcd-xhci.c', which allows attackers to exploit the vulnerability to obtain sensitive information...

DEBIAN-CVE-2016-4037

The ehciadvancestate function in hw/usb/hcd-ehci.c in QEMU allows local guest OS administrators to cause a denial of service infinite loop and CPU consumption via a circular split isochronous transfer descriptor siTD list, a related issue to CVE-2015-8558...

QEMU Denial of Service Vulnerability (CNVD-2016-02377)

QEMU is a simulation processor software developed by French programmer Fabrice Bellard. The software is fast and cross-platform. A denial of service vulnerability exists in QEMU. When the program uses USB EHCI emulation support, an attacker can exploit this vulnerability to cause a denial of...

QEMU 'hw/usb/hcd-ohci.c' Denial of Service Vulnerability

QEMU is a suite of analog processor software. A security vulnerability in QEMU 'hw/usb/hcd-ohci.c' allows attackers to exploit the vulnerability to crash the QEMU process and cause a denial of service...

UBUNTU-CVE-2016-2391

The ohcibusstart function in the USB OHCI emulation support hw/usb/hcd-ohci.c in QEMU allows local guest OS administrators to cause a denial of service NULL pointer dereference and QEMU process crash via vectors related to multiple eoftimers...