76 matches found
DEBIAN-CVE-2016-5338
The 1 espregread and 2 espregwrite functions in hw/scsi/esp.c in QEMU allow local guest OS administrators to cause a denial of service QEMU process crash or execute arbitrary code on the QEMU host via vectors related to the information transfer buffer...
Design/Logic Flaw
The 1 espregread and 2 espregwrite functions in hw/scsi/esp.c in QEMU allow local guest OS administrators to cause a denial of service QEMU process crash or execute arbitrary code on the QEMU host via vectors related to the information transfer buffer...
CVE-2016-5238
The getcmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service out-of-bounds write and QEMU process crash via vectors related to reading from the information transfer buffer in non-DMA mode...
CVE-2016-5338
The 1 espregread and 2 espregwrite functions in hw/scsi/esp.c in QEMU allow local guest OS administrators to cause a denial of service QEMU process crash or execute arbitrary code on the QEMU host via vectors related to the information transfer buffer...
CVE-2016-5238
The getcmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service out-of-bounds write and QEMU process crash via vectors related to reading from the information transfer buffer in non-DMA mode...
CVE-2016-5338
The 1 espregread and 2 espregwrite functions in hw/scsi/esp.c in QEMU allow local guest OS administrators to cause a denial of service QEMU process crash or execute arbitrary code on the QEMU host via vectors related to the information transfer buffer...
CVE-2016-5338
The 1 espregread and 2 espregwrite functions in hw/scsi/esp.c in QEMU allow local guest OS administrators to cause a denial of service QEMU process crash or execute arbitrary code on the QEMU host via vectors related to the information transfer buffer...
UBUNTU-CVE-2016-5338
The 1 espregread and 2 espregwrite functions in hw/scsi/esp.c in QEMU allow local guest OS administrators to cause a denial of service QEMU process crash or execute arbitrary code on the QEMU host via vectors related to the information transfer buffer...
CVE-2016-5338
The 1 espregread and 2 espregwrite functions in hw/scsi/esp.c in QEMU allow local guest OS administrators to cause a denial of service QEMU process crash or execute arbitrary code on the QEMU host via vectors related to the information transfer buffer...
CVE-2016-5238
The getcmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service out-of-bounds write and QEMU process crash via vectors related to reading from the information transfer buffer in non-DMA mode...
Debian DSA-2932-1 : qemu - security update
Several vulnerabilities were discovered in qemu, a fast processor emulator. - CVE-2013-4344 Buffer overflow in the SCSI implementation in QEMU, when a SCSI controller has more than 256 attached devices, allows local users to gain privileges via a small transfer buffer in a REPORT LUNS command. -...
Debian DSA-2933-1 : qemu-kvm - security update
Several vulnerabilities were discovered in qemu-kvm, a full virtualization solution on x86 hardware. - CVE-2013-4344 Buffer overflow in the SCSI implementation in QEMU, when a SCSI controller has more than 256 attached devices, allows local users to gain privileges via a small transfer buffer in ...
CVE-2013-2028
The ngxhttpparsechunked function in http/ngxhttpparse.c in nginx 1.3.9 through 1.4.0 allows remote attackers to cause a denial of service crash and execute arbitrary code via a chunked Transfer-Encoding request with a large chunk size, which triggers an integer signedness error and a stack-based...
kernel: information leak via userspace USB interface
The processcomplcompat function in drivers/usb/core/devio.c in Linux kernel 2.6.x through 2.6.32, and possibly other versions, does not clear the transfer buffer before returning to userspace when a USB command fails, which might make it easier for physically proximate attackers to obtain sensiti...
CVE-2005-3660
Linux kernel 2.4 and 2.6 allows attackers to cause a denial of service memory exhaustion and panic by creating a large number of connected file descriptors or socketpairs and setting a large data transfer buffer, then preventing Linux from being able to finish the transfer by causing the process ...
CVE-2005-3660
Linux kernel 2.4 and 2.6 allows attackers to cause a denial of service memory exhaustion and panic by creating a large number of connected file descriptors or socketpairs and setting a large data transfer buffer, then preventing Linux from being able to finish the transfer by causing the process ...