Integer overflow in the load_multiboot function in hw/i386/multiboot.c in QEMU (aka Quick Emulator) allows local guest OS users to execute arbitrary code on the host via crafted multiboot header address values, which trigger an out-of-bounds write.

Integer overflow in the load_multiboot function in hw/i386/multiboot.c in QEMU (aka Quick Emulator) allows local guest OS users to execute arbitrary code on the host via crafted multiboot header address values, which trigger an out-of-bounds write.

Integer overflow in the load_multiboot function in hw/i386/multiboot.c in QEMU (aka Quick Emulator) allows local guest OS users to execute arbitrary code on the host via crafted multiboot header address values, which trigger an out-of-bounds write.

Integer overflow in the load_multiboot function in hw/i386/multiboot.c in QEMU (aka Quick Emulator) allows local guest OS users to execute arbitrary code on the host via crafted multiboot header address values, which trigger an out-of-bounds write.

Integer overflow in the load_multiboot function in hw/i386/multiboot.c ...

Уязвимость функции load_multiboot (hw/i386/multiboot.c) эмулятора аппаратного обеспечения QEMU, позволяющая нарушителю выполнить произвольный код

ELSA-2017-3368: qemu-kvm security update (MODERATE)

Security update for qemu

Security update for qemu

Security update for qemu

Security update for qemu

Security update for kvm

Security update for qemu

Security update for kvm

Security update for qemu

ELSA-2018-4289: qemu security update (IMPORTANT)

ELSA-2018-4285: qemu security update (IMPORTANT)

ELSA-2019-4585: qemu security update (IMPORTANT)