Количество 50
Количество 50
CVE-2022-26353
A flaw was found in the virtio-net device of QEMU. This flaw was inadvertently introduced with the fix for CVE-2021-3748, which forgot to unmap the cached virtqueue elements on error, leading to memory leakage and other unexpected results. Affected QEMU version: 6.2.0.
CVE-2022-26353
CVE-2022-26353
A flaw was found in the virtio-net device of QEMU. This flaw was inadv ...
CVE-2021-3748
A use-after-free vulnerability was found in the virtio-net device of QEMU. It could occur when the descriptor's address belongs to the non direct access region, due to num_buffers being set after the virtqueue elem has been unmapped. A malicious guest could use this flaw to crash QEMU, resulting in a denial of service condition, or potentially execute code on the host with the privileges of the QEMU process.
CVE-2021-3748
A use-after-free vulnerability was found in the virtio-net device of QEMU. It could occur when the descriptor's address belongs to the non direct access region, due to num_buffers being set after the virtqueue elem has been unmapped. A malicious guest could use this flaw to crash QEMU, resulting in a denial of service condition, or potentially execute code on the host with the privileges of the QEMU process.
CVE-2021-3748
A use-after-free vulnerability was found in the virtio-net device of QEMU. It could occur when the descriptor's address belongs to the non direct access region, due to num_buffers being set after the virtqueue elem has been unmapped. A malicious guest could use this flaw to crash QEMU, resulting in a denial of service condition, or potentially execute code on the host with the privileges of the QEMU process.
CVE-2021-3748
CVE-2021-3748
A use-after-free vulnerability was found in the virtio-net device of Q ...
GHSA-xrwp-4qvv-59wr
A flaw was found in the virtio-net device of QEMU. This flaw was inadvertently introduced with the fix for CVE-2021-3748, which forgot to unmap the cached virtqueue elements on error, leading to memory leakage and other unexpected results. Affected QEMU version: 6.2.0.
BDU:2022-05847
Уязвимость устройства virtio-net эмулятора аппаратного обеспечения QEMU, связанная с неосвобождением ресурса после истечения действительного срока его эксплуатирования, позволяющая нарушителю вызвать отказ в обслуживании
GHSA-4f87-mww8-gm8x
A use-after-free vulnerability was found in the virtio-net device of QEMU. It could occur when the descriptor's address belongs to the non direct access region, due to num_buffers being set after the virtqueue elem has been unmapped. A malicious guest could use this flaw to crash QEMU, resulting in a denial of service condition, or potentially execute code on the host with the privileges of the QEMU process.
BDU:2022-00753
Уязвимость реализации функции virtio_net_receive_rcu (hw/net/virtio-net.c) эмулятора аппаратного обеспечения QEMU, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
SUSE-SU-2023:3800-1
Security update for qemu
SUSE-SU-2023:3721-1
Security update for qemu
openSUSE-SU-2021:3605-1
Security update for qemu
openSUSE-SU-2021:3604-1
Security update for qemu
openSUSE-SU-2021:1461-1
Security update for qemu
SUSE-SU-2021:3653-1
Security update for qemu
SUSE-SU-2021:3605-1
Security update for qemu
SUSE-SU-2021:3604-1
Security update for qemu
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-26353 A flaw was found in the virtio-net device of QEMU. This flaw was inadvertently introduced with the fix for CVE-2021-3748, which forgot to unmap the cached virtqueue elements on error, leading to memory leakage and other unexpected results. Affected QEMU version: 6.2.0. | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
 | CVSS3: 7.5 | 0% Низкий | около 1 года назад | |
| CVE-2022-26353 A flaw was found in the virtio-net device of QEMU. This flaw was inadv ... | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
 | CVE-2021-3748 A use-after-free vulnerability was found in the virtio-net device of QEMU. It could occur when the descriptor's address belongs to the non direct access region, due to num_buffers being set after the virtqueue elem has been unmapped. A malicious guest could use this flaw to crash QEMU, resulting in a denial of service condition, or potentially execute code on the host with the privileges of the QEMU process. | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
 | CVE-2021-3748 A use-after-free vulnerability was found in the virtio-net device of QEMU. It could occur when the descriptor's address belongs to the non direct access region, due to num_buffers being set after the virtqueue elem has been unmapped. A malicious guest could use this flaw to crash QEMU, resulting in a denial of service condition, or potentially execute code on the host with the privileges of the QEMU process. | CVSS3: 7.5 | 0% Низкий | около 4 лет назад |
| CVE-2021-3748 A use-after-free vulnerability was found in the virtio-net device of QEMU. It could occur when the descriptor's address belongs to the non direct access region, due to num_buffers being set after the virtqueue elem has been unmapped. A malicious guest could use this flaw to crash QEMU, resulting in a denial of service condition, or potentially execute code on the host with the privileges of the QEMU process. | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
| CVSS3: 7.5 | 0% Низкий | больше 2 лет назад | |
| CVE-2021-3748 A use-after-free vulnerability was found in the virtio-net device of Q ... | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
| GHSA-xrwp-4qvv-59wr A flaw was found in the virtio-net device of QEMU. This flaw was inadvertently introduced with the fix for CVE-2021-3748, which forgot to unmap the cached virtqueue elements on error, leading to memory leakage and other unexpected results. Affected QEMU version: 6.2.0. | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
 | BDU:2022-05847 Уязвимость устройства virtio-net эмулятора аппаратного обеспечения QEMU, связанная с неосвобождением ресурса после истечения действительного срока его эксплуатирования, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
| GHSA-4f87-mww8-gm8x A use-after-free vulnerability was found in the virtio-net device of QEMU. It could occur when the descriptor's address belongs to the non direct access region, due to num_buffers being set after the virtqueue elem has been unmapped. A malicious guest could use this flaw to crash QEMU, resulting in a denial of service condition, or potentially execute code on the host with the privileges of the QEMU process. | CVSS3: 8.8 | 0% Низкий | больше 3 лет назад |
| BDU:2022-00753 Уязвимость реализации функции virtio_net_receive_rcu (hw/net/virtio-net.c) эмулятора аппаратного обеспечения QEMU, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании | CVSS3: 7.5 | около 4 лет назад | |
 | SUSE-SU-2023:3800-1 Security update for qemu | около 2 лет назад | ||
| SUSE-SU-2023:3721-1 Security update for qemu | около 2 лет назад | ||
| openSUSE-SU-2021:3605-1 Security update for qemu | почти 4 года назад | ||
| openSUSE-SU-2021:3604-1 Security update for qemu | почти 4 года назад | ||
| openSUSE-SU-2021:1461-1 Security update for qemu | почти 4 года назад | ||
| SUSE-SU-2021:3653-1 Security update for qemu | почти 4 года назад | ||
| SUSE-SU-2021:3605-1 Security update for qemu | почти 4 года назад | ||
| SUSE-SU-2021:3604-1 Security update for qemu | почти 4 года назад |
Уязвимостей на страницу