CLSA-2026-1773832495 Fix of 114 CVEs

CVE-2023-53515 - virtio-mmio: don't break lifecycle of vmdev CVE-2023-53515 CVE-2025-39967 - fbcon: fix integer overflow in fbcondosetfont CVE-2025-39967 - fbcon: Fix OOB access in font allocation CVE-2025-39967 CVE-2025-38702 - fbdev: fix potential buffer overflow in doregisterframebuffer...

EUVD-2011-2201

Malware in sbrugna...

USN-6716-1: Linux kernel (Azure) vulnerabilities

Wenqing Liu discovered that the f2fs file system implementation in the Linux kernel did not properly validate inode types while performing garbage collection. An attacker could use this to construct a malicious f2fs image that, when mounted and operated on, could cause a denial of service system...

Ubuntu: Security Advisory (USN-6686-4)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6686-2: Linux kernel vulnerabilities

It was discovered that the DesignWare USB3 for Qualcomm SoCs driver in the Linux kernel did not properly handle certain error conditions during device registration. A local attacker could possibly use this to cause a denial of service system crash. CVE-2023-22995 It was discovered that a race...

USN-6681-3: Linux kernel vulnerabilities

Wenqing Liu discovered that the f2fs file system implementation in the Linux kernel did not properly validate inode types while performing garbage collection. An attacker could use this to construct a malicious f2fs image that, when mounted and operated on, could cause a denial of service system...

USN-6688-1: Linux kernel (OEM) vulnerabilities

Pratyush Yadav discovered that the Xen network backend implementation in the Linux kernel did not properly handle zero length data request, leading to a null pointer dereference vulnerability. An attacker in a guest VM could possibly use this to cause a denial of service host domain crash...

K92002212: TMM vulnerability CVE-2019-6676

Security Advisory Description Traffic Management Microkernel TMM may restart on BIG-IP Virtual Edition VE when using virtio direct descriptors and packets 2 KB or larger. CVE-2019-6676 Impact Some virtio backend implementations send large packets 2 KB or larger even when Large Offload Receive LRO...

Privilege Escalation

qemu-kvm is vulnerable to privilege escalation. The vulnerability exists as it was found that the virtio subsystem in qemu-kvm did not properly validate virtqueue in and out requests from the guest. A privileged guest user could use this flaw to trigger a buffer overflow, allowing them to crash t...

Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-3762-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3762-1 advisory. It was discovered that the VirtIO subsystem in the Linux kernel did not properly initialize memory in some situations. A local attacker could use this to...

Ubuntu 16.04 LTS : Linux kernel (HWE) vulnerabilities (USN-3762-2)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3762-2 advisory. USN-3762-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux Hardware Enableme...

openSUSE Security Update : kvm (openSUSE-SU-2011:0803-1)

A privileged guest user could cause a buffer overflow in the virtio subsystem of the host, therefore crashing the guest or potentially execute arbitrary code on the host CVE-2011-2212, CVE-2011-2512. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...

Buffer overflow

Buffer overflow in the virtio subsystem in qemu-kvm 0.14.0 and earlier allows privileged guest users to cause a denial of service guest crash or gain privileges via a crafted indirect descriptor related to "virtqueue in and out requests."...

CVE-2011-2212

Buffer overflow in the virtio subsystem in qemu-kvm 0.14.0 and earlier allows privileged guest users to cause a denial of service guest crash or gain privileges via a crafted indirect descriptor related to "virtqueue in and out requests."...

CVE-2011-2212

CVE-2011-2212 describes a buffer overflow in the virtio subsystem of qemu-kvm up to version 0.14.0 and earlier. A privileged guest user could crash the guest or gain host privileges via a crafted indirect descriptor in virtqueue in/out requests. The connected advisories (RHSA-2011:0919, ELSA-2011...

RedHat Update for qemu-kvm RHSA-2011:0919-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Important: Red Hat Security Advisory: qemu-kvm security and bug fix update

Updated qemu-kvm packages that fix two security issues and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

PT-2012-1059 · Qemu +1 · Qemu-Kvm +1

Name of the Vulnerable Software and Affected Versions: qemu-kvm version 0.14.0 and earlier Description: The issue is related to a buffer overflow in the virtio subsystem, allowing privileged guest users to cause a denial of service or gain privileges via a crafted indirect descriptor. This is...