19 matches found
EUVD-2011-1749
Malware in sbrugna...
SUSE: Security Advisory (SUSE-SU-2015:0870-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Arbitrary Code Execution
qemu-kvm is vulnerable to arbitrary code execution. The vulnerability exists as it was found that the virtio-blk driver in qemu-kvm did not properly validate read and write requests from guests. A privileged guest user could use this flaw to crash the guest or, possibly, execute arbitrary code on...
Virtuozzo 7 : qemu-img / qemu-kvm / qemu-kvm-common / etc (VZLSA-2017-0396)
An update for qemu-kvm is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
Scientific Linux Security Update : qemu-kvm on SL7.x x86_64 (20170302)
Security Fixes : - Quick emulator QEMU built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could occur while copying VGA data via bitblt copy in backward mode. A privileged user inside a guest could use this flaw to crash the QEMU process...
Important: Red Hat Security Advisory: qemu-kvm security and bug fix update
An update for qemu-kvm is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
SuSE 11.3 Security Update : kvm (SAT Patch Number 10645)
This update for KVM fixes an issue in the virtio-blk driver which could result in incorrectly setting its WCE configuration. Under some circumstances, this misconfiguration could cause severe file system corruption, because cache flushes were not generated as they ought to have been. The update...
openSUSE Security Update : kvm (openSUSE-SU-2011:0510-1)
By causing a hot-unplug of the pci-isa bridge from within guests the qemu process could access already freed memory. A privileged user inside the guest could exploit that to crash the guest instance or potentially execute arbitrary code on the host CVE-2011-1751. The virtio-blk driver did not...
openSUSE Security Update : kvm (openSUSE-SU-2011:0510-1)
By causing a hot-unplug of the pci-isa bridge from within guests the qemu process could access already freed memory. A privileged user inside the guest could exploit that to crash the guest instance or potentially execute arbitrary code on the host CVE-2011-1751. The virtio-blk driver did not...
Scientific Linux Security Update : kernel on SL5.x i386/x86_64 (20120209)
The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues : - Using the SGIO ioctl to issue SCSI requests to partitions or LVM volumes resulted in the requests being passed to the underlying block device. If a privileged...
Scientific Linux Security Update : qemu-kvm on SL6.x x86_64
KVM Kernel-based Virtual Machine is a full virtualization solution for Linux on AMD64 and Intel 64 systems. qemu-kvm is the user-space component for running virtual machines using KVM. It was found that the virtio-blk driver in qemu-kvm did not properly validate read and write requests from guest...
CVE-2011-1750
Multiple heap-based buffer overflows in the virtio-blk driver hw/virtio-blk.c in qemu-kvm 0.14.0 allow local guest users to cause a denial of service guest crash and possibly gain privileges via a 1 write request to the virtioblkhandlewrite function or 2 read request to the virtioblkhandleread...
Heap overflow
Multiple heap-based buffer overflows in the virtio-blk driver hw/virtio-blk.c in qemu-kvm 0.14.0 allow local guest users to cause a denial of service guest crash and possibly gain privileges via a 1 write request to the virtioblkhandlewrite function or 2 read request to the virtioblkhandleread...
CVE-2011-1750
Multiple heap-based buffer overflows in the virtio-blk driver hw/virtio-blk.c in qemu-kvm 0.14.0 allow local guest users to cause a denial of service guest crash and possibly gain privileges via a 1 write request to the virtioblkhandlewrite function or 2 read request to the virtioblkhandleread...
RedHat Update for qemu-kvm RHSA-2011:0534-01
Check for the Version of qemu-kvm OpenVAS Vulnerability Test RedHat Update for qemu-kvm RHSA-2011:0534-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Important: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix several security issues and various bugs are now available for Red Hat Enterprise Linux 5.6 Extended Update Support. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores,...
RedHat Update for kernel RHSA-2012:0107-01
Check for the Version of kernel OpenVAS Vulnerability Test RedHat Update for kernel RHSA-2012:0107-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
Important: Red Hat Security Advisory: qemu-kvm security, bug fix, and enhancement update
Updated qemu-kvm packages that fix two security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores,...
PT-2012-1530 · Qemu +1 · Qemu-Kvm +1
Name of the Vulnerable Software and Affected Versions: qemu-kvm version 0.14.0 Description: The issue is related to multiple heap-based buffer overflows in the virtio-blk driver. This can be exploited by local guest users to cause a denial of service, potentially leading to a guest crash, and may...