Количество 64
Количество 64

SUSE-SU-2022:3768-1
Security update for qemu
GHSA-rj8x-cp5p-j26r
A stack overflow vulnerability was found in the Intel HD Audio device (intel-hda) of QEMU. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition. The highest threat from this vulnerability is to system availability. This flaw affects QEMU versions prior to 7.0.0.

BDU:2022-05645
Уязвимость эмулятора аппаратного обеспечения QEMU, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю вызвать отказ в обслуживании

CVE-2021-4158
A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.

CVE-2021-4158
A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.

CVE-2021-4158
A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.

CVE-2021-4158
CVE-2021-4158
A NULL pointer dereference issue was found in the ACPI code of QEMU. A ...

SUSE-SU-2023:0761-1
Security update for qemu

CVE-2021-3750
A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions (such as reset) while the device is still transferring packets. This can ultimately lead to a use-after-free issue. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code within the context of the QEMU process on the host. This flaw affects QEMU versions before 7.0.0.

CVE-2021-3750
A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions (such as reset) while the device is still transferring packets. This can ultimately lead to a use-after-free issue. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code within the context of the QEMU process on the host. This flaw affects QEMU versions before 7.0.0.

CVE-2021-3750
A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions (such as reset) while the device is still transferring packets. This can ultimately lead to a use-after-free issue. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code within the context of the QEMU process on the host. This flaw affects QEMU versions before 7.0.0.

CVE-2021-3750
CVE-2021-3750
A DMA reentrancy issue was found in the USB EHCI controller emulation ...

openSUSE-SU-2021:2442-1
Security update for qemu

SUSE-SU-2021:2442-1
Security update for qemu

SUSE-SU-2021:2563-1
Security update for qemu

SUSE-SU-2021:2546-1
Security update for qemu

SUSE-SU-2021:2461-1
Security update for qemu

SUSE-SU-2021:2428-1
Security update for qemu
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
---|---|---|---|---|
![]() | SUSE-SU-2022:3768-1 Security update for qemu | почти 3 года назад | ||
GHSA-rj8x-cp5p-j26r A stack overflow vulnerability was found in the Intel HD Audio device (intel-hda) of QEMU. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition. The highest threat from this vulnerability is to system availability. This flaw affects QEMU versions prior to 7.0.0. | CVSS3: 6.5 | 0% Низкий | около 3 лет назад | |
![]() | BDU:2022-05645 Уязвимость эмулятора аппаратного обеспечения QEMU, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 5.5 | 0% Низкий | больше 3 лет назад |
![]() | CVE-2021-4158 A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition. | CVSS3: 6 | 0% Низкий | почти 3 года назад |
![]() | CVE-2021-4158 A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition. | CVSS3: 6 | 0% Низкий | больше 3 лет назад |
![]() | CVE-2021-4158 A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition. | CVSS3: 6 | 0% Низкий | почти 3 года назад |
![]() | CVSS3: 6 | 0% Низкий | 12 месяцев назад | |
CVE-2021-4158 A NULL pointer dereference issue was found in the ACPI code of QEMU. A ... | CVSS3: 6 | 0% Низкий | почти 3 года назад | |
![]() | SUSE-SU-2023:0761-1 Security update for qemu | больше 2 лет назад | ||
![]() | CVE-2021-3750 A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions (such as reset) while the device is still transferring packets. This can ultimately lead to a use-after-free issue. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code within the context of the QEMU process on the host. This flaw affects QEMU versions before 7.0.0. | CVSS3: 8.2 | 0% Низкий | больше 3 лет назад |
![]() | CVE-2021-3750 A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions (such as reset) while the device is still transferring packets. This can ultimately lead to a use-after-free issue. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code within the context of the QEMU process on the host. This flaw affects QEMU versions before 7.0.0. | CVSS3: 7.5 | 0% Низкий | почти 5 лет назад |
![]() | CVE-2021-3750 A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions (such as reset) while the device is still transferring packets. This can ultimately lead to a use-after-free issue. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code within the context of the QEMU process on the host. This flaw affects QEMU versions before 7.0.0. | CVSS3: 8.2 | 0% Низкий | больше 3 лет назад |
![]() | CVSS3: 8.2 | 0% Низкий | около 3 лет назад | |
CVE-2021-3750 A DMA reentrancy issue was found in the USB EHCI controller emulation ... | CVSS3: 8.2 | 0% Низкий | больше 3 лет назад | |
![]() | openSUSE-SU-2021:2442-1 Security update for qemu | около 4 лет назад | ||
![]() | SUSE-SU-2021:2442-1 Security update for qemu | около 4 лет назад | ||
![]() | SUSE-SU-2021:2563-1 Security update for qemu | около 4 лет назад | ||
![]() | SUSE-SU-2021:2546-1 Security update for qemu | около 4 лет назад | ||
![]() | SUSE-SU-2021:2461-1 Security update for qemu | около 4 лет назад | ||
![]() | SUSE-SU-2021:2428-1 Security update for qemu | около 4 лет назад |
Уязвимостей на страницу