Lucene search
Ubuntu.comUB:CVE-2024-24474HistoryFeb 20, 2024 - 12:00 a.m.
CVE-2024-24474
2024-02-2000:00:00
ubuntu.com
ubuntu.com
4
qemu
integer underflow
buffer overflow
ti command
non-dma transfer
fifo data
esp_do_nodma
scsi
async_len
vulnerability
security bug
unix
QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow,
via a TI command when an expected non-DMA transfer length is less than the
length of the available FIFO data. This occurs in esp_do_nodma in
hw/scsi/esp.c because of an underflow of async_len.
Bugs
Related
prion
prion
Integer overflow
2024-02-20 18:15:00
debiancve
debiancve
CVE-2024-24474
2024-02-20 18:15:52
redos
redos
ROS-20240423-09
2024-04-23 00:00:00
cve
cve
CVE-2024-24474
2024-02-20 18:15:52
veracode
veracode
Buffer Overflow
2024-02-26 14:34:24
osv
osv
CVE-2024-24474
2024-02-20 18:15:52
redhatcve
redhatcve
CVE-2024-24474
2024-02-22 12:32:16
nessus
nessus
SUSE SLES15 Security Update : qemu (SUSE-SU-2024:1394-1)
2024-04-24 00:00:00
Oracle Linux 8 : virt:kvm_utils3 (ELSA-2024-12276)
2024-04-10 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:1394-1)
2024-05-07 00:00:00
openSUSE: Security Advisory for qemu (SUSE-SU-2024:1103-1)
2024-04-09 00:00:00
openSUSE: Security Advisory for qemu (SUSE-SU-2024:1394-1)
2024-04-25 00:00:00
oraclelinux
oraclelinux
virt:kvm_utils3 security update
2024-04-10 00:00:00