19 matches found
EUVD-2019-16336
Malware in sbrugna...
EUVD-2019-19186
Malware in sbrugna...
EUVD-2018-10563
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2019-12247
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - QEMU 3.0.0 has an Integer Overflow because the qga/commands.c files do not check the length of the argument list or the number of environment variables. NOTE:...
Linux Distros Unpatched Vulnerability : CVE-2019-6778
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In QEMU 3.0.0, tcpemu in slirp/tcpsubr.c has a heap-based buffer overflow. CVE-2019-6778 Note that Nessus relies on the presence of the package as reported by t...
Oracle Linux 7 : qemu (ELSA-2019-4520)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-4520 advisory. - lsi53c895a: check message length value is valid Prasad J Pandit Orabug: 28873208 CVE-2018-18849 - 9p: fix QEMU crash when renaming files Greg Kurz...
SUSE CVE-2019-9824
tcpemu in slirp/tcpsubr.c aka slirp/src/tcpsubr.c in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to Information disclosure...
Out Of Bound Access
In Qemu 3.0.0, lsidomsgin in hw/scsi/lsi53c895a.c allows out-of-bounds access by triggering an invalid msglen value...
Important: qemu
Issue Overview: In libslirp 4.1.0, as used in QEMU 4.2.0, tcpsubr.c misuses snprintf return values, leading to a buffer overflow in later code. CVE-2020-8608 Affected Packages: qemu Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference...
Security Bulletin: IBM WebSphere Cast Iron Solution & App Connect Professional is affected by Open Source vulnerabilities
Summary IBM WebSphere Cast Iron Solution & App Connect Professional has addressed the open source vulnerabilities. Vulnerability Details CVEID: CVE-2019-9824 DESCRIPTION: tcpemu in slirp/tcpsubr.c aka slirp/src/tcpsubr.c in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to...
CVE-2019-9824
tcpemu in slirp/tcpsubr.c aka slirp/src/tcpsubr.c in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to Information disclosure...
Information disclosure
tcpemu in slirp/tcpsubr.c aka slirp/src/tcpsubr.c in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to Information disclosure...
CVE-2019-9824
CVE-2019-9824 affects QEMU (slirp: tcp_subr.c) where uninitialized data in snprintf leads to information disclosure. The issue is observed in SLIRP/tcp_emu usage within QEMU 3.0.0. Connected advisories consistently reference QEMU/libslirp components and recommend updating to patched releases; how...
CVE-2019-6778
In QEMU 3.0.0, tcpemu in slirp/tcpsubr.c has a heap-based buffer overflow...
Heap overflow
In QEMU 3.0.0, tcpemu in slirp/tcpsubr.c has a heap-based buffer overflow...
CVE-2018-18849
In Qemu 3.0.0, lsidomsgin in hw/scsi/lsi53c895a.c allows out-of-bounds access by triggering an invalid msglen value...
CVE-2019-9824
tcpemu in slirp/tcpsubr.c aka slirp/src/tcpsubr.c in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to Information disclosure...
CVE-2018-18849
In Qemu 3.0.0, lsidomsgin in hw/scsi/lsi53c895a.c allows out-of-bounds access by triggering an invalid msglen value...
CVE-2018-18849
In Qemu 3.0.0, lsidomsgin in hw/scsi/lsi53c895a.c allows out-of-bounds access by triggering an invalid msglen value...