SUSE CVE-2017-5987

The sdhcisdmatransfermultiblocks function in hw/sd/sdhci.c in QEMU aka Quick Emulator allows local OS guest privileged users to cause a denial of service infinite loop and QEMU process crash via vectors involving the transfer mode register during multi block transfer...

A heap-based buffer overflow was found in QEMU through 5.0.0 in the SDHCI device emulation support. It could occur while doing a multi block SDMA transfer via the sdhci_sdma_transfer_multi_blocks() routine in hw/sd/sdhci.c. A guest user or process could use this flaw to crash the QEMU process on the host resulting in a denial of service condition or potentially execute arbitrary code with privileges of the QEMU process on the host.

...

DEBIAN-CVE-2020-17380

A heap-based buffer overflow was found in QEMU through 5.0.0 in the SDHCI device emulation support. It could occur while doing a multi block SDMA transfer via the sdhcisdmatransfermultiblocks routine in hw/sd/sdhci.c. A guest user or process could use this flaw to crash the QEMU process on the...

Privilege Escalation

qemu:xenial is vulnerable to privilege escalation. The sdhcisdmatransfermultiblocks function in hw/sd/sdhci.c in QEMU aka Quick Emulator allows local OS guest privileged users to cause a denial of service infinite loop and QEMU process crash via vectors involving the transfer mode register during...

DEBIAN-CVE-2017-5987

The sdhcisdmatransfermultiblocks function in hw/sd/sdhci.c in QEMU aka Quick Emulator allows local OS guest privileged users to cause a denial of service infinite loop and QEMU process crash via vectors involving the transfer mode register during multi block transfer...

CVE-2017-5987

The sdhcisdmatransfermultiblocks function in hw/sd/sdhci.c in QEMU aka Quick Emulator allows local OS guest privileged users to cause a denial of service infinite loop and QEMU process crash via vectors involving the transfer mode register during multi block transfer...

Code injection

The sdhcisdmatransfermultiblocks function in hw/sd/sdhci.c in QEMU aka Quick Emulator allows local OS guest privileged users to cause a denial of service infinite loop and QEMU process crash via vectors involving the transfer mode register during multi block transfer...

CVE-2017-5987

The sdhcisdmatransfermultiblocks function in hw/sd/sdhci.c in QEMU aka Quick Emulator allows local OS guest privileged users to cause a denial of service infinite loop and QEMU process crash via vectors involving the transfer mode register during multi block transfer...

CVE-2017-5987

The CVE-2017-5987 issue affects QEMU’s sdhci_sdma_transfer_multi_blocks implementation (hw/sd/sdhci.c). A local privileged guest can trigger an infinite loop during multi-block transfers by vectors involving the transfer mode register, leading to a QEMU process crash (DoS). The connected advisori...

CVE-2017-5987

The sdhcisdmatransfermultiblocks function in hw/sd/sdhci.c in QEMU aka Quick Emulator allows local OS guest privileged users to cause a denial of service infinite loop and QEMU process crash via vectors involving the transfer mode register during multi block transfer...