Search CVE reports
241 – 250 of 464 results
CVE-2017-5525
Low prioritySome fixes available 3 of 4
Memory leak in hw/audio/ac97.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations.
2 affected packages
qemu, qemu-kvm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qemu | — | — | Not affected | Not affected | Fixed |
| qemu-kvm | — | — | Not in release | Not in release | Not in release |
CVE-2016-10155
Low prioritySome fixes available 3 of 4
Memory leak in hw/watchdog/wdt_i6300esb.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations.
2 affected packages
qemu, qemu-kvm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qemu | — | — | Not affected | Not affected | Fixed |
| qemu-kvm | — | — | Not in release | Not in release | Not in release |
CVE-2016-10029
Medium priorityThe virtio_gpu_set_scanout function in QEMU (aka Quick Emulator) built with Virtio GPU Device emulator support allows local guest OS users to cause a denial of service (out-of-bounds read and process crash) via a scanout id in a...
2 affected packages
qemu, qemu-kvm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qemu | — | — | — | — | Fixed |
| qemu-kvm | — | — | — | — | Not in release |
CVE-2016-10028
Medium priorityThe virgl_cmd_get_capset function in hw/display/virtio-gpu-3d.c in QEMU (aka Quick Emulator) built with Virtio GPU Device emulator support allows local guest OS users to cause a denial of service (out-of-bounds read and process...
2 affected packages
qemu, qemu-kvm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qemu | — | — | — | — | Fixed |
| qemu-kvm | — | — | — | — | Not in release |
CVE-2017-2633
Medium prioritySome fixes available 1 of 2
An out-of-bounds memory access issue was found in Quick Emulator (QEMU) before 1.7.2 in the VNC display driver. This flaw could occur while refreshing the VNC display surface area in the 'vnc_refresh_server_surface'. A user inside...
2 affected packages
qemu, qemu-kvm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qemu | — | — | Not affected | Not affected | Not affected |
| qemu-kvm | — | — | Not in release | Not in release | Not in release |
CVE-2017-2620
Medium prioritySome fixes available 4 of 6
Quick emulator (QEMU) before 2.8 built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The issue could occur while copying VGA data in cirrus_bitblt_cputovideo. A privileged user...
3 affected packages
qemu, qemu-kvm, xen
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qemu | — | — | Not affected | Not affected | Fixed |
| qemu-kvm | — | — | Not in release | Not in release | Not in release |
| xen | — | — | Not affected | Not affected | Not affected |
CVE-2016-9637
Medium priorityThe (1) ioport_read and (2) ioport_write functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vectors involving an out-of-range...
3 affected packages
qemu, qemu-kvm, xen
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qemu | — | — | — | — | Not affected |
| qemu-kvm | — | — | — | — | Not in release |
| xen | — | — | — | — | Not affected |
CVE-2017-2615
Medium prioritySome fixes available 4 of 6
Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could occur while copying VGA data via bitblt copy in backward mode. A privileged user inside a guest...
3 affected packages
qemu, qemu-kvm, xen
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qemu | — | — | Not affected | Not affected | Fixed |
| qemu-kvm | — | — | Not in release | Not in release | Not in release |
| xen | — | — | Not affected | Not affected | Not affected |
CVE-2016-9381
Medium prioritySome fixes available 5 of 6
Race condition in QEMU in Xen allows local x86 HVM guest OS administrators to gain privileges by changing certain data on shared rings, aka a "double fetch" vulnerability.
3 affected packages
qemu, qemu-kvm, xen
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qemu | — | — | Not affected | Not affected | Fixed |
| qemu-kvm | — | — | Not in release | Not in release | Not in release |
| xen | — | — | Not affected | Not affected | Not affected |
CVE-2016-9603
Medium prioritySome fixes available 5 of 6
A heap buffer overflow flaw was found in QEMU's Cirrus CLGD 54xx VGA emulator's VNC display driver support before 2.9; the issue could occur when a VNC client attempted to update its display after a VGA operation is performed by a...
3 affected packages
qemu, qemu-kvm, xen
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qemu | — | — | — | — | Fixed |
| qemu-kvm | — | — | — | — | Not in release |
| xen | — | — | — | — | Not affected |