20 matches found
EUVD-2019-3721
Malware in sbrugna...
EUVD-2022-15418
Malicious code in bioql PyPI...
EUVD-2024-47600
Malicious code in bioql PyPI...
CLSA-2025-1758796886 kernel: Fix of 22 CVEs
drm/amd/amdgpu: introduce gcmes2.bin v2 - proc: fix a dentry lock race between releasetask and lookup - scsi: aacraid: Stop using PCIIRQAFFINITY - scsi: aacraid: Remove useless code - scsi: aacraid: Remove unused aaccheckhealth - scsi: aacraid: struct user,sgmap,64,raw: Replace 1-element arrays...
Oracle Linux 7 : qemu (ELSA-2020-5576)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5576 advisory. - iscsi: Cap block count from GET LBA STATUS CVE-2020-1711 Felipe Franciosi Orabug: 30807256 CVE-2020-1711 - scsi: lsi: exit infinite loop while...
CVE-2022-0216
A use-after-free vulnerability was found in the LSI53C895A SCSI Host Bus Adapter emulation of QEMU. The flaw occurs while processing repeated messages to cancel the current SCSI request via the lsidomsgout function. This flaw allows a malicious privileged user within the guest to crash the QEMU...
Null pointer dereference
A NULL pointer dereference flaw was found in the megasas-gen2 SCSI host bus adapter emulation of QEMU in versions before and including 6.0. This issue occurs in the megasascommandcancelled callback function while dropping a SCSI request. This flaw allows a privileged guest user to crash the QEMU...
CVE-2020-35503
A NULL pointer dereference flaw was found in the megasas-gen2 SCSI host bus adapter emulation of QEMU in versions before and including 6.0. This issue occurs in the megasascommandcancelled callback function while dropping a SCSI request. This flaw allows a privileged guest user to crash the QEMU...
CVE-2020-35506
A use-after-free vulnerability was found in the am53c974 SCSI host bus adapter emulation of QEMU in versions before 6.0.0 during the handling of the 'Information Transfer' command CMDTI. This flaw allows a privileged guest user to crash the QEMU process on the host, resulting in a denial of servi...
CVE-2020-35505
A NULL pointer dereference flaw was found in the am53c974 SCSI host bus adapter emulation of QEMU in versions before 6.0.0. This issue occurs while handling the 'Information Transfer' command. This flaw allows a privileged guest user to crash the QEMU process on the host, resulting in a denial of...
Denial Of Service (DoS)
QEMU is vulnerable to denial of service. During execution of scripts in lsiexecutescript, the LSI scsi adapter emulator advances s-dsp index to read next opcode, resulting in an infinite loop if the subsequent opcode is empty...
USN-4191-1: QEMU vulnerabilities
It was discovered that the LSI SCSI adapter emulator implementation in QEMU did not properly validate executed scripts. A local attacker could use this to cause a denial of service. CVE-2019-12068 Sergej Schumilo, Cornelius Aschermann and Simon Wörner discovered that the qxl paravirtual graphics...
CVE-2019-12068
In QEMU 1:4.1-1, 1:2.1+dfsg-12+deb8u6, 1:2.8+dfsg-6+deb9u8, 1:3.1+dfsg-8deb10u1, 1:3.1+dfsg-8+deb10u2, and 1:2.1+dfsg-12+deb8u12 fixed, when executing script in lsiexecutescript, the LSI scsi adapter emulator advances 's-dsp' index to read next opcode. This can lead to an infinite loop if the nex...
DEBIAN-CVE-2019-12068
In QEMU 1:4.1-1, 1:2.1+dfsg-12+deb8u6, 1:2.8+dfsg-6+deb9u8, 1:3.1+dfsg-8deb10u1, 1:3.1+dfsg-8+deb10u2, and 1:2.1+dfsg-12+deb8u12 fixed, when executing script in lsiexecutescript, the LSI scsi adapter emulator advances 's-dsp' index to read next opcode. This can lead to an infinite loop if the nex...
Code injection
In QEMU 1:4.1-1, 1:2.1+dfsg-12+deb8u6, 1:2.8+dfsg-6+deb9u8, 1:3.1+dfsg-8deb10u1, 1:3.1+dfsg-8+deb10u2, and 1:2.1+dfsg-12+deb8u12 fixed, when executing script in lsiexecutescript, the LSI scsi adapter emulator advances 's-dsp' index to read next opcode. This can lead to an infinite loop if the nex...
UBUNTU-CVE-2019-12068
In QEMU 1:4.1-1, 1:2.1+dfsg-12+deb8u6, 1:2.8+dfsg-6+deb9u8, 1:3.1+dfsg-8deb10u1, 1:3.1+dfsg-8+deb10u2, and 1:2.1+dfsg-12+deb8u12 fixed, when executing script in lsiexecutescript, the LSI scsi adapter emulator advances 's-dsp' index to read next opcode. This can lead to an infinite loop if the nex...
CVE-2019-12068
In QEMU 1:4.1-1, 1:2.1+dfsg-12+deb8u6, 1:2.8+dfsg-6+deb9u8, 1:3.1+dfsg-8deb10u1, 1:3.1+dfsg-8+deb10u2, and 1:2.1+dfsg-12+deb8u12 fixed, when executing script in lsiexecutescript, the LSI scsi adapter emulator advances 's-dsp' index to read next opcode. This can lead to an infinite loop if the nex...
CVE-2019-12068
CVE-2019-12068 affects QEMU 1:4.1-1, 1:2.1+dfsg-12+deb8u6, 1:2.8+dfsg-6+deb9u8, 1:3.1+dfsg-8~deb10u1, 1:3.1+dfsg-8+deb10u2, and 1:2.1+dfsg-12+deb8u12 (fixed). The issue is in lsi_execute_script() where the LSI SCSI adapter emulator advances the s->dsp index to read the next opcode, which can c...
CVE-2019-12068
In QEMU 1:4.1-1, 1:2.1+dfsg-12+deb8u6, 1:2.8+dfsg-6+deb9u8, 1:3.1+dfsg-8deb10u1, 1:3.1+dfsg-8+deb10u2, and 1:2.1+dfsg-12+deb8u12 fixed, when executing script in lsiexecutescript, the LSI scsi adapter emulator advances 's-dsp' index to read next opcode. This can lead to an infinite loop if the nex...
A proxy VM may become inaccessible during hotadd backup
Challenge 'Hotadd' backup proxy virtual machine becomes inaccessible or powered off with the following possible symptoms: 1. Virtual machine randomly stops responding. 2. When guest operating system fails, there is no BSOD or kernel panic. 3. The vmx process of virtual machine fails or is killed ...