Search CVE reports

Toggle filters

391 – 400 of 483 results

CVE-2015-3456

High priority
Fixed

The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1)...

4 affected packages

qemu, virtualbox, qemu-kvm, xen

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu
virtualbox
qemu-kvm
xen
Show less packages

CVE-2014-9718

Low priority

Some fixes available 2 of 4

The (1) BMDMA and (2) AHCI HBA interfaces in the IDE functionality in QEMU 1.0 through 2.1.3 have multiple interpretations of a function's return value, which allows guest OS users to cause a host OS denial of service (memory...

2 affected packages

qemu, qemu-kvm

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu
qemu-kvm
Show less packages

CVE-2015-2756

Low priority

Some fixes available 6 of 8

QEMU, as used in Xen 3.3.x through 4.5.x, does not properly restrict access to PCI command registers, which might allow local HVM guest users to cause a denial of service (non-maskable interrupt and host crash) by disabling the...

4 affected packages

qemu, qemu-kvm, xen, xen-3.3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu
qemu-kvm
xen
xen-3.3
Show less packages

CVE-2015-1779

Low priority
Fixed

The VNC websocket frame decoder in QEMU allows remote attackers to cause a denial of service (memory and CPU consumption) via a large (1) websocket payload or (2) HTTP headers section.

2 affected packages

qemu, qemu-kvm

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu
qemu-kvm
Show less packages

CVE-2014-8106

Medium priority
Fixed

Heap-based buffer overflow in the Cirrus VGA emulator (hw/display/cirrus_vga.c) in QEMU before 2.2.0 allows local guest users to execute arbitrary code via vectors related to blit regions. NOTE: this vulnerability exists because...

2 affected packages

qemu, qemu-kvm

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu
qemu-kvm
Show less packages

CVE-2014-7840

Low priority
Fixed

The host_from_stream_offset function in arch_init.c in QEMU, when loading RAM during migration, allows remote attackers to execute arbitrary code via a crafted (1) offset or (2) length value in savevm data.

2 affected packages

qemu, qemu-kvm

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu
qemu-kvm
Show less packages

CVE-2014-3640

Low priority
Fixed

The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of service (NULL pointer dereference) by sending a udp packet with a value of 0 in the source port and address, which triggers access...

2 affected packages

qemu, qemu-kvm

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu
qemu-kvm
Show less packages

CVE-2014-3615

Low priority
Fixed

The VGA emulator in QEMU allows local guest users to read host memory by setting the display to a high resolution.

2 affected packages

qemu, qemu-kvm

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu
qemu-kvm
Show less packages

CVE-2014-7815

Medium priority
Fixed

The set_pixel_format function in ui/vnc.c in QEMU allows remote attackers to cause a denial of service (crash) via a small bytes_per_pixel value.

2 affected packages

qemu, qemu-kvm

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu
qemu-kvm
Show less packages

CVE-2014-3689

Medium priority
Fixed

The vmware-vga driver (hw/display/vmware_vga.c) in QEMU allows local guest users to write to qemu memory locations and gain privileges via unspecified parameters related to rectangle handling.

2 affected packages

qemu, qemu-kvm

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
qemu
qemu-kvm
Show less packages
  1. Previous page
  2. 38
  3. 39
  4. 40
  5. 41
  6. 42
  7. Next page
Export to JSON