Filtered by vendor Qemu
Subscriptions
Total
411 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2007-6227 | 1 Qemu | 1 Qemu | 2018-10-15 | N/A |
QEMU 0.9.0 allows local users of a Windows XP SP2 guest operating system to overwrite the TranslationBlock (code_gen_buffer) buffer, and probably have unspecified other impacts related to an "overflow," via certain Windows executable programs, as demonstrated by qemu-dos.com. | ||||
CVE-2017-15038 | 1 Qemu | 1 Qemu | 2018-09-07 | N/A |
Race condition in the v9fs_xattrwalk function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS users to obtain sensitive information from host heap memory via vectors related to reading extended attributes. | ||||
CVE-2014-3471 | 1 Qemu | 1 Qemu | 2018-01-31 | N/A |
Use-after-free vulnerability in hw/pci/pcie.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (QEMU instance crash) via hotplug and hotunplug operations of Virtio block devices. | ||||
CVE-2008-2004 | 1 Qemu | 1 Qemu | 2017-09-29 | N/A |
The drive_init function in QEMU 0.9.1 determines the format of a raw disk image based on the header, which allows local guest users to read arbitrary files on the host by modifying the header to identify a different format, which is used when the guest is restarted. | ||||
CVE-2017-8380 | 1 Qemu | 1 Qemu | 2017-09-06 | N/A |
Buffer overflow in the "megasas_mmio_write" function in Qemu 2.9.0 allows remote attackers to have unspecified impact via unknown vectors. | ||||
CVE-2008-5714 | 1 Qemu | 1 Qemu | 2017-08-08 | N/A |
Off-by-one error in monitor.c in Qemu 0.9.1 might make it easier for remote attackers to guess the VNC password, which is limited to seven characters where eight was intended. | ||||
CVE-2008-4553 | 2 Debian, Qemu | 2 Debian Linux, Qemu | 2017-08-08 | N/A |
qemu-make-debian-root in qemu 0.9.1-5 on Debian GNU/Linux allows local users to overwrite arbitrary files via a symlink attack on temporary files and directories. | ||||
CVE-2015-8556 | 1 Qemu | 1 Qemu | 2017-03-27 | N/A |
Local privilege escalation vulnerability in the Gentoo QEMU package before 2.5.0-r1. | ||||
CVE-2013-4375 | 2 Qemu, Xen | 2 Qemu, Xen | 2017-01-07 | N/A |
The qdisk PV disk backend in qemu-xen in Xen 4.2.x and 4.3.x before 4.3.1, and qemu 1.1 and other versions, allows local HVM guests to cause a denial of service (domain grant reference consumption) via unspecified vectors. | ||||
CVE-2015-4037 | 1 Qemu | 1 Qemu | 2016-12-24 | N/A |
The slirp_smb function in net/slirp.c in QEMU 2.3.0 and earlier creates temporary files with predictable names, which allows local users to cause a denial of service (instantiation failure) by creating /tmp/qemu-smb.*-* files before the program. | ||||
CVE-2013-4377 | 1 Qemu | 1 Qemu | 2014-03-06 | N/A |
Use-after-free vulnerability in the virtio-pci implementation in Qemu 1.4.0 through 1.6.0 allows local users to cause a denial of service (daemon crash) by "hot-unplugging" a virtio device. |