Qemu

Qemu

422 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9

CVE-2017-7471

  • EPSS 0.6%
  • Veröffentlicht 09.07.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 03:31:58

Quick Emulator (Qemu) built with the VirtFS, host directory sharing via Plan 9 File System (9pfs) support, is vulnerable to an improper access control issue. It could occur while accessing files on a shared host directory. A privileged user inside gu...

9.1

CVE-2017-2615

  • EPSS 0.39%
  • Veröffentlicht 03.07.2018 01:29:00
  • Zuletzt bearbeitet 21.11.2024 03:23:50

Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could occur while copying VGA data via bitblt copy in backward mode. A privileged user inside a guest could use this flaw to...

7.5

CVE-2018-12617

Exploit
  • EPSS 14.14%
  • Veröffentlicht 21.06.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 03:45:33

qmp_guest_file_read in qga/commands-posix.c and qga/commands-win32.c in qemu-ga (aka QEMU Guest Agent) in QEMU 2.12.50 has an integer overflow causing a g_malloc0() call to trigger a segmentation fault when trying to allocate a large memory chunk. Th...

8.2

CVE-2018-11806

  • EPSS 0.03%
  • Veröffentlicht 13.06.2018 16:29:01
  • Zuletzt bearbeitet 21.11.2024 03:44:04

m_cat in slirp/mbuf.c in Qemu has a heap-based buffer overflow via incoming fragmented datagrams.

9

CVE-2016-9602

  • EPSS 1.37%
  • Veröffentlicht 26.04.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:01:29

Qemu before version 2.9 is vulnerable to an improper link following when built with the VirtFS. A privileged user inside guest could use this flaw to access host file system beyond the shared folder and potentially escalating their privileges on a ho...

5.5

CVE-2018-7858

  • EPSS 0.07%
  • Veröffentlicht 12.03.2018 21:29:01
  • Zuletzt bearbeitet 21.11.2024 04:12:53

Quick Emulator (aka QEMU), when built with the Cirrus CLGD 54xx VGA Emulator support, allows local guest OS privileged users to cause a denial of service (out-of-bounds access and QEMU process crash) by leveraging incorrect region calculation when up...

8.8

CVE-2018-7550

  • EPSS 0.09%
  • Veröffentlicht 01.03.2018 17:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:20

The load_multiboot function in hw/i386/multiboot.c in Quick Emulator (aka QEMU) allows local guest OS users to execute arbitrary code on the QEMU host via a mh_load_end_addr value greater than mh_bss_end_addr, which triggers an out-of-bounds read or ...

5.5

CVE-2017-18043

  • EPSS 0.06%
  • Veröffentlicht 31.01.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:14

Integer overflow in the macro ROUND_UP (n, d) in Quick Emulator (Qemu) allows a user to cause a denial of service (Qemu process crash).

4.4

CVE-2017-18030

  • EPSS 0.11%
  • Veröffentlicht 23.01.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:12

The cirrus_invalidate_region function in hw/display/cirrus_vga.c in Qemu allows local OS guest privileged users to cause a denial of service (out-of-bounds array access and QEMU process crash) via vectors related to negative pitch.

6

CVE-2018-5683

Exploit
  • EPSS 0.09%
  • Veröffentlicht 23.01.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:09:09

The vga_draw_text function in Qemu allows local OS guest privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) by leveraging improper memory address validation.