CVE-2022-26353

A flaw was found in the virtio-net device of QEMU. This flaw was inadvertently introduced with the fix for CVE-2021-3748, which forgot to unmap the cached virtqueue elements on error, leading to memory leakage and other unexpected results. Affected QEMU version: 6.2.0...

QEMU 安全漏洞

QEMU Quick Emulator is a set of simulation processor software by Fabrice Bellard, a French individual developer. The software is fast and cross-platform. A security vulnerability exists in QEMU version 6.2.0, which stems from a previous fix for CVE-2021-3748 in the QEMU virtio-net appliance, that...

QEMU 安全漏洞

QEMU is a suite of emulation processor software from Fabrice Bellard, a French personal developer. QEMU 6.2.0 and earlier versions contain an information disclosure vulnerability that stems from the fact that invalid elements in vhost-vsock devices are not separated from the virtqueue before...

CVE-2022-26354

A flaw was found in the vhost-vsock device of QEMU. In case of error, an invalid element was not detached from the virtqueue before freeing its memory, leading to memory leakage and other unexpected results. Mitigation Mitigation for this issue is either not available or the currently available...

Mageia: Security Advisory (MGASA-2019-0287)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Denial Of Service (DoS)

qemu:sid is vulnerable to denial of service. The vulnerability exists because the numbuffers being set after the virtqueue elem has been unmapped, allowing an attacker to crash the application through the use after free...

GSD-2021-1000084 vhost-vdpa: fix vm_flags for virtqueue doorbell mapping

vhost-vdpa: fix vmflags for virtqueue doorbell mapping This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.3 by commit...

UVI-2021-1000120 vhost-vdpa: fix vm_flags for virtqueue doorbell mapping

vhost-vdpa: fix vmflags for virtqueue doorbell mapping This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.11.20 by commit...

UVI-2021-1000158 vhost-vdpa: fix vm_flags for virtqueue doorbell mapping

vhost-vdpa: fix vmflags for virtqueue doorbell mapping This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.36 by commit...

GSD-2021-1000120 vhost-vdpa: fix vm_flags for virtqueue doorbell mapping

vhost-vdpa: fix vmflags for virtqueue doorbell mapping This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.11.20 by commit...

GSD-2021-1000158 vhost-vdpa: fix vm_flags for virtqueue doorbell mapping

vhost-vdpa: fix vmflags for virtqueue doorbell mapping This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.36 by commit...

PT-2024-11076 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the virtqueue doorbell mapping in the Linux kernel. The virtqueue doorbell is usually implemented via registers, but the necessary vma-flags like VM PFNMAP are...

kernel: vhost-net: guest to host kernel escape during migration

A buffer overflow flaw was found in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this fla...

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

kernel: vhost-net: guest to host kernel escape during migration

A buffer overflow flaw was found in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this fla...

kernel: vhost-net: guest to host kernel escape during migration

A buffer overflow flaw was found in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this fla...

openSUSE Security Update : qemu (openSUSE-2019-1274)

This update for qemu fixes the following issues : Security issues fixed : - CVE-2019-9824: Fixed information leak in slirp bsc1129622. - CVE-2019-8934: Added method to specify whether or not to expose certain ppc64 hostinformation bsc1126455. - CVE-2019-3812: Fixed Out-of-bounds memory access and...

Security update for qemu (important)

openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2019:1274-1 Rating: important References: 1118900 1125721 1126455 1129622 1130675 1131955 Cross-References: CVE-2018-20815 CVE-2019-3812 CVE-2019-8934 CVE-2019-9824 Affected Products: openSUSE Leap 42.3 An update that...

Denial Of Service (DoS)

QEMU is vulnerable to denial of service. Quick emulatorQemu built with the virtio framework is vulnerable to an unbounded memory allocation issue. It was found that a malicious guest user could submit more requests than the virtqueue size permits. Processing a request allocates a VirtQueueElement...

SUSE-SU-2018:2565-1 Security update for qemu

This update for qemu fixes the following issues: These security issues were fixed: - CVE-2018-12617: qmpguestfileread had an integer overflow that could have been exploited by sending a crafted QMP command including guest-file-read with a large count value to the agent via the listening socket...