Lucene search
K

5 matches found

Vulnrichment
Vulnrichment
added 2022/11/29 12:0 a.m.9 views

CVE-2022-4144

An out-of-bounds read flaw was found in the QXL display device emulation in QEMU. The qxlphys2virt function does not check the size of the structure pointed to by the guest physical address, potentially reading past the end of the bar space into adjacent pages. A malicious guest user could use th...

6.1AI score0.00281EPSS
Exploits0References5
Prion
Prion
added 2022/04/29 5:15 p.m.19 views

Integer overflow

A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursoralloc function can lead to the allocation of a small cursor object followed by a subsequent heap-based buffer overflow. This flaw allows a malicious privileged guest user to crash the QEMU process on th...

4.6CVSS8.1AI score0.00834EPSS
Exploits1References5Affected Software3
AlpineLinux
AlpineLinux
added 2022/04/29 5:15 p.m.60 views

CVE-2021-4206

A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursoralloc function can lead to the allocation of a small cursor object followed by a subsequent heap-based buffer overflow. This flaw allows a malicious privileged guest user to crash the QEMU process on th...

8.2CVSS5.7AI score0.00834EPSS
Exploits1
Veracode
Veracode
added 2019/01/15 9:12 a.m.38 views

Denial Of Service (DoS)

QEMU is vulnerable to denial of service. Quick emulatorQemu built with the virtio framework is vulnerable to an unbounded memory allocation issue. It was found that a malicious guest user could submit more requests than the virtqueue size permits. Processing a request allocates a VirtQueueElement...

5.5CVSS6AI score0.0052EPSS
Exploits0References23Affected Software2
OpenVAS
OpenVAS
added 2016/08/10 12:0 a.m.40 views

CentOS Update for qemu-guest-agent CESA-2016:1585 centos6

Check the version of qemu-guest-agent SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882539";...

5.5CVSS6.4AI score0.0052EPSS
Exploits0References2
Rows per page
Query Builder