10 matches found
Sourceforge WANem 安全漏洞
Sourceforge WANem is an open source network testing tool from Sourceforge. A security vulnerability exists in Sourceforge WANem v2.3, which stems from the result.php script not cleaning up input and the presence of command injection in the SUID-root binary dosu, which could lead to remote code...
PT-2025-24274
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fix included in commit 141d34391abbb315d68556b7c67ad97885407547. Description The Linux kernel contains a vulnerability in the net sched subsystem, specifically within the HFSC Hierarchical Fair Queuing...
UBUNTU-CVE-2025-37890
In the Linux kernel, the following vulnerability has been resolved: netsched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc As described in Gerrard's report 1, we have a UAF case when an hfsc class has a netem child qdisc. The crux of the issue is that hfsc is assuming that...
netem: Update sch->q.qlen before qdisc_tree_reduce_backlog()
...
CLSA-2024-1729874131 kernel: Fix of 43 CVEs
drm/amdgpu: Validate TA binary size CVE-2024-44977 - drm/amd/display: Avoid overflow from uint32t to uint8t CVE-2024-47661 - scsi: lpfc: Handle mailbox timeouts in lpfcgetsfpinfo CVE-2024-46842 - ALSA: line6: Fix racy access to midibuf CVE-2024-44954 - exec: Fix ToCToU between perm check and...
DEBIAN-CVE-2021-20203
An integer overflow issue was found in the vmxnet3 NIC emulator of the QEMU for versions up to v5.2.0. It may occur if a guest was to supply invalid values for rx/tx queue size or other NIC parameters. A privileged guest user may use this flaw to crash the QEMU process on the host resulting in Do...
libslirp 缓冲区错误漏洞
libslirp is a general-purpose TCP-IP emulator for managing virtual network services in a hypervisor. A buffer overread vulnerability exists in libslirp 4.3.1 and earlier versions of slirp.c. The vulnerability stems from slirp.c attempting to read a certain amount of header data even though the...
The vulnerability of the uar_read and uar_write functions in the PVRDMA virtual network adapter emulator for hardware emulation software QEMU allows a hacker to induce a service failure.
The vulnerability of the uarread and uarwrite functions in the PVRDMA virtual network adapter emulator for hardware emulation software QEMU is related to pointer arithmetic errors. Exploiting this vulnerability can allow a remote attacker to cause a service failure...
UBUNTU-CVE-2016-2538
Multiple integer overflows in the USB Net device emulator hw/usb/dev-network.c in QEMU before 2.5.1 allow local guest OS administrators to cause a denial of service QEMU process crash or obtain sensitive host memory information via a remote NDIS control message packet that is mishandled in the 1...
The vulnerability of Xen hypervisors, allowing a hacker to read data stored in memory
The vulnerability of the QEMU emulator for networking hardware in the Xen hypervisor is related to the lack of protection for service data. Exploiting this vulnerability allows a remote attacker to read data stored in memory...