Search CVE reports

Toggle filters

11 – 20 of 491 results

CVE-2026-5744

Medium priority
Vulnerable

[hw/uefi: heap overflow]

1 affected package

qemu

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu Vulnerable Not affected Not affected Not affected Not affected
Show less packages

CVE-2026-3890

Medium priority
Vulnerable

[hcd-ohci: infinite loop]

1 affected package

qemu

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu Vulnerable Vulnerable Vulnerable Vulnerable Vulnerable
Show less packages

CVE-2026-3842

Medium priority

Some fixes available 2 of 7

[Unknown description]

1 affected package

qemu

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu Vulnerable Fixed Not affected Needs evaluation Needs evaluation
Show less packages

CVE-2026-3196

Medium priority

Some fixes available 2 of 3

two potential OOB memory accesses in virtio-snd

1 affected package

qemu

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu Vulnerable Fixed Not affected Not affected Not affected
Show less packages

CVE-2026-3195

Medium priority

Some fixes available 2 of 3

two potential OOB memory accesses in virtio-snd

1 affected package

qemu

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu Vulnerable Fixed Not affected Not affected Not affected
Show less packages

CVE-2026-2243

Medium priority

Some fixes available 3 of 8

A flaw was found in QEMU. A specially crafted VMDK image could trigger an out-of-bounds read vulnerability, potentially leading to a 12-byte leak of sensitive information or a denial of service condition (DoS).

1 affected package

qemu

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu Vulnerable Fixed Fixed Vulnerable Vulnerable
Show less packages

CVE-2026-0665

Medium priority

Some fixes available 2 of 3

An off-by-one error was found in QEMU's KVM Xen guest support. A malicious guest could use this flaw to trigger out-of-bounds heap accesses in the QEMU process via the emulated Xen physdev hypercall interface, leading to a denial...

1 affected package

qemu

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu Fixed Not affected Not affected Not affected
Show less packages

CVE-2025-8860

Medium priority
Not affected

A flaw was found in QEMU in the uefi-vars virtual device. When the guest writes to register UEFI_VARS_REG_BUFFER_SIZE, the .write callback `uefi_vars_write` is invoked. The function allocates a heap buffer without zeroing the...

1 affected package

qemu

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu Not affected Not affected Not affected Not affected
Show less packages

CVE-2025-14876

Medium priority

Some fixes available 2 of 3

A flaw was found in the virtio-crypto device of QEMU. A malicious guest operating system can exploit a missing length limit in the AKCIPHER path, leading to uncontrolled memory allocation. This can result in a denial of service...

1 affected package

qemu

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu Fixed Not affected Not affected Not affected
Show less packages

CVE-2025-12464

Medium priority

Some fixes available 2 of 3

A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code...

1 affected package

qemu

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu Fixed Not affected Not affected Not affected
Show less packages
  1. Previous page
  2. 1
  3. 2
  4. 3
  5. 4
  6. 5
  7. Next page
Export to JSON