Lucene search
K

8 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in Qemu

A flaw was discovered in the QEMU-built-in VNC server during the processing of ClientCutText messages. A incorrect exit condition may lead to an infinite loop when inflating a zlib buffer controlled by an attacker in the inflatebuffer function. This could allow a remotely authenticated client, wh...

6.5CVSS6.8AI score0.01891EPSS
Exploits0References2
OSV
OSV
added 2026/04/24 2:50 p.m.15 views

CLSA-2026-1777042213 qemu-kvm: Fix of 2 CVEs

Fix CVE-2023-3255 qemu-kvm: VNC inflatebuffer infinite loop ELSCVE-57519 - Fix CVE-2023-6683 qemu-kvm: VNC clipboard NULL pointer dereference ELSCVE-57516...

6.5CVSS7.1AI score0.01891EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2024/09/11 7:0 a.m.3 views

Qemu: vnc: infinite loop in inflate_buffer() leads to denial of service

...

6.5CVSS6.7AI score0.01891EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/06/07 12:0 a.m.6 views

The vulnerability of the inflate_buffer() function in the VNC server QEMU, which allows a hacker to cause a service failure

The vulnerability of the inflatebuffer function in the VNC server QEMU is related to an incorrect exit condition, which leads to an infinite loop during buffer inflation using zlib. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

6.8CVSS6.8AI score0.01891EPSS
Exploits0References13Affected Software6
RedHat Linux
RedHat Linux
added 2024/01/15 4:2 p.m.3 views

zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field

A security vulnerability was found in zlib. The flaw triggered a heap-based buffer in inflate in the inflate.c function via a large gzip header extra field. This flaw is only applicable in the call inflateGetHeader...

9.8CVSS6.9AI score0.1593EPSS
Exploits1References4
OSV
OSV
added 2023/11/03 11:6 a.m.2 views

OESA-2023-1786 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong exit condition may lead to an infinite loop when inflating an attacker controlled zlib...

6.5CVSS6.6AI score0.01891EPSS
Exploits0References2
OSV
OSV
added 2023/11/03 11:6 a.m.3 views

OESA-2023-1785 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong exit condition may lead to an infinite loop when inflating an attacker controlled zlib...

6.5CVSS6.6AI score0.01891EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/09/13 4:12 p.m.25 views

CVE-2023-3255 Qemu: vnc: infinite loop in inflate_buffer() leads to denial of service

A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong exit condition may lead to an infinite loop when inflating an attacker controlled zlib buffer in the inflatebuffer function. This could allow a remote authenticated client who is able to send a...

6.5CVSS6.6AI score0.01891EPSS
Exploits0References4
Rows per page
Query Builder