Redhat

Openstack

212 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2016-9911

  • EPSS 0.14%
  • Veröffentlicht 23.12.2016 22:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Quick Emulator (Qemu) built with the USB EHCI Emulation support is vulnerable to a memory leakage issue. It could occur while processing packet data in 'ehci_init_transfer'. A guest user/process could use this issue to leak host memory, resulting in ...

6.5

CVE-2016-9921

  • EPSS 0.07%
  • Veröffentlicht 23.12.2016 22:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Quick emulator (Qemu) built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to a divide by zero issue. It could occur while copying VGA data when cirrus graphics mode was set to be VGA. A privileged user inside guest could use this flaw ...

6

CVE-2016-7466

  • EPSS 0.09%
  • Veröffentlicht 10.12.2016 00:59:19
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Memory leak in the usb_xhci_exit function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator), when the xhci uses msix, allows local guest OS administrators to cause a denial of service (memory consumption and possibly QEMU process crash) by repeatedly...

6

CVE-2016-7422

  • EPSS 0.09%
  • Veröffentlicht 10.12.2016 00:59:18
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The virtqueue_map_desc function in hw/virtio/virtio.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (NULL pointer dereference and QEMU process crash) via a large I/O descriptor buffer length value.

4.4

CVE-2016-6888

  • EPSS 0.1%
  • Veröffentlicht 10.12.2016 00:59:09
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Integer overflow in the net_tx_pkt_init function in hw/net/net_tx_pkt.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (QEMU process crash) via the maximum fragmentation count, which triggers an uncheck...

6

CVE-2016-8910

  • EPSS 0.1%
  • Veröffentlicht 04.11.2016 21:59:10
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The rtl8139_cplus_transmit function in hw/net/rtl8139.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) by leveraging failure to limit the ring descriptor count.

6

CVE-2016-8909

  • EPSS 0.04%
  • Veröffentlicht 04.11.2016 21:59:09
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The intel_hda_xfer function in hw/audio/intel-hda.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) via an entry with the same value for buffer length and pointer posi...

6

CVE-2016-8669

  • EPSS 0.07%
  • Veröffentlicht 04.11.2016 21:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The serial_update_parameters function in hw/char/serial.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (divide-by-zero error and QEMU process crash) via vectors involving a value of divider greater th...

6

CVE-2016-8576

  • EPSS 0.11%
  • Veröffentlicht 04.11.2016 21:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The xhci_ring_fetch function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) by leveraging failure to limit the number of link Transfer Request...

10

CVE-2016-6662

Exploit
  • EPSS 89.58%
  • Veröffentlicht 20.09.2016 18:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Oracle MySQL through 5.5.52, 5.6.x through 5.6.33, and 5.7.x through 5.7.15; MariaDB before 5.5.51, 10.0.x before 10.0.27, and 10.1.x before 10.1.17; and Percona Server before 5.5.51-38.1, 5.6.x before 5.6.32-78.0, and 5.7.x before 5.7.14-7 allow loc...