Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2021/04/15 12:0 a.m.63 views

EulerOS Virtualization 2.9.0 : qemu (EulerOS-SA-2021-1763)

According to the versions of the qemu packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - ideatapicmdreplyend in hw/ide/atapi.c in QEMU 5.1.0 allows out-of-bounds read access because a buffer index is not validated...

6.7CVSS7.5AI score0.05447EPSS
Exploits2References9
CNVD
CNVD
added 2021/02/01 12:0 a.m.7 views

QEMU heap buffer overflow vulnerability (CNVD-2021-09804)

QEMU is a set of simulation processors written by Fabrice Bellard and distributed with source code under the GPL license, widely used on the GNU/Linux platform. QEMU 5.0.0 and earlier versions of SDHCI device emulation support suffer from a heap buffer overflow vulnerability when performing a...

6.3CVSS7.6AI score0.00424EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2020/08/11 6:13 p.m.34 views

CVE-2020-17380

A flaw was found in QEMU. A heap-based buffer overflow vulnerability was found in the SDHCI device emulation support allowing a guest user or process to crash the QEMU process on the host resulting in a denial of service condition, or potentially execute arbitrary code with privileges of the QEMU...

4.6CVSS4.2AI score0.00424EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/05/12 12:0 a.m.67 views

SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2017:1241-1)

This update for qemu fixes several issues. These security issues were fixed : - CVE-2017-2620: In CIRRUSBLTMODEMEMSYSSRC mode the bitblit copy routine cirrusbitbltcputovideo failed to check the memory region, allowing for an out-of-bounds write that allows for privilege escalation bsc1024972 -...

9.9CVSS7.5AI score0.03648EPSS
Exploits0References44
Ubuntu
Ubuntu
added 2017/04/25 12:1 p.m.80 views

USN-3268-1: QEMU vulnerabilities

Zhenhao Hong discovered that QEMU incorrectly handled the Virtio GPU device. An attacker inside the guest could use this issue to cause QEMU to crash, resulting in a denial of service. CVE-2016-10028 It was discovered that QEMU incorrectly handled the JAZZ RC4030 device. A privileged attacker...

9.9CVSS7.7AI score0.04448EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2017/03/08 12:0 a.m.48 views

SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2017:0625-1)

This update for qemu fixes several issues. These security issues were fixed : - CVE-2017-5898: The CCID Card device emulator support was vulnerable to an integer overflow flaw allowing a privileged user to crash the Qemu process on the host resulting in DoS bsc1023907. - CVE-2017-5857: The Virtio...

9.9CVSS7.5AI score0.03648EPSS
Exploits0References50
Rows per page
Query Builder