CVE search results

171 – 180 of 466 results

Detailed view

Sort by:

CVE-2018-18954

Low priority

Fixed

The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory.

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
qemu	—	—	—	Fixed	Not affected
qemu-kvm	—	—	—	Not in release	Not in release

CVE-2018-18849

Low priority

Fixed

In Qemu 3.0.0, lsi_do_msgin in hw/scsi/lsi53c895a.c allows out-of-bounds access by triggering an invalid msg_len value.

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
qemu	—	—	Fixed	Fixed	Fixed
qemu-kvm	—	—	Not in release	Not in release	Not in release

An OOB heap buffer r/w access issue was found in the NVM Express Controller emulation in QEMU. It could occur in nvme_cmb_ops routines in nvme device. A guest user/process could use this flaw to crash the QEMU process resulting in...

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
qemu	—	—	—	Fixed	Not affected
qemu-kvm	—	—	—	Not in release	Not in release

CVE-2018-18438

Low priority

Ignored

Qemu has integer overflows because IOReadHandler and its associated functions use a signed integer data type for a size value.

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
qemu	—	—	Not affected	Not affected	Not affected
qemu-kvm	—	—	Not in release	Not in release	Not in release

CVE-2018-10839

Medium priority

Fixed

Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is vulnerable to an integer overflow, which could lead to buffer overflow issue. It could occur when receiving packets over the network. A user inside guest could...

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
qemu	—	—	Fixed	Fixed	Fixed
qemu-kvm	—	—	Not in release	Not in release	Not in release

CVE-2018-17963

Medium priority

Fixed

qemu_deliver_packet_iov in net/net.c in Qemu accepts packet sizes greater than INT_MAX, which allows attackers to cause a denial of service or possibly have unspecified other impact.

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
qemu	—	—	Fixed	Fixed	Fixed
qemu-kvm	—	—	Not in release	Not in release	Not in release

CVE-2018-17962

Medium priority

Fixed

Qemu has a Buffer Overflow in pcnet_receive in hw/net/pcnet.c because an incorrect integer data type is used.

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
qemu	—	—	Fixed	Fixed	Fixed
qemu-kvm	—	—	Not in release	Not in release	Not in release

CVE-2018-17958

Medium priority

Fixed

Qemu has a Buffer Overflow in rtl8139_do_receive in hw/net/rtl8139.c because an incorrect integer data type is used.

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
qemu	—	—	Fixed	Fixed	Fixed
qemu-kvm	—	—	Not in release	Not in release	Not in release

CVE-2018-15746

Low priority

Some fixes available 2 of 4

qemu-seccomp.c in QEMU might allow local OS guest users to cause a denial of service (guest crash) by leveraging mishandling of the seccomp policy for threads other than the main thread.

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
qemu	—	—	—	Fixed	Ignored
qemu-kvm	—	—	—	Not in release	Not in release

CVE-2017-2630

Medium priority

Not affected

A stack buffer overflow flaw was found in the Quick Emulator (QEMU) before 2.9 built with the Network Block Device (NBD) client support. The flaw could occur while processing server's response to a 'NBD_OPT_LIST' request. A...

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
qemu	—	—	—	—	Not affected
qemu-kvm	—	—	—	—	Not in release

Export to JSON

Results by page:

Search CVE reports

CVE-2018-18954

CVE-2018-18849

CVE-2018-16847

CVE-2018-18438

CVE-2018-10839

CVE-2018-17963

CVE-2018-17962

CVE-2018-17958

CVE-2018-15746

CVE-2017-2630