Qemu

Qemu

426 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 3.98%
  • Veröffentlicht 04.11.2014 21:55:24
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The usb_device_post_load function in hw/usb/bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, related to a negative setup_len or setup_index value.

  • EPSS 0.45%
  • Veröffentlicht 01.11.2014 23:55:09
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The VGA emulator in QEMU allows local guest users to read host memory by setting the display to a high resolution.

  • EPSS 1.57%
  • Veröffentlicht 26.08.2014 14:55:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

vmstate_xhci_event in hw/usb/hcd-xhci.c in QEMU 1.6.0 does not terminate the list with the VMSTATE_END_OF_LIST macro, which allows attackers to cause a denial of service (out-of-bounds access, infinite loop, and memory corruption) and possibly gain p...

  • EPSS 0.72%
  • Veröffentlicht 08.05.2014 14:29:11
  • Zuletzt bearbeitet 06.05.2026 22:30:45

hw/net/vmxnet3.c in QEMU 2.0.0-rc0, 1.7.1, and earlier allows local guest users to cause a denial of service or possibly execute arbitrary code via vectors related to (1) RX or (2) TX queue numbers or (3) interrupt indices. NOTE: some of these detai...

  • EPSS 0.39%
  • Veröffentlicht 23.04.2014 15:55:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Off-by-one error in the cmd_smart function in the smart self test in hw/ide/core.c in QEMU before 2.0 allows local users to have unspecified impact via a SMART EXECUTE OFFLINE command that triggers a buffer underflow and memory corruption.

  • EPSS 0.71%
  • Veröffentlicht 18.04.2014 14:55:25
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Integer overflow in the virtio_net_handle_mac function in hw/net/virtio-net.c in QEMU 2.0 and earlier allows local guest users to execute arbitrary code via a MAC addresses table update request, which triggers a heap-based buffer overflow.

Exploit
  • EPSS 0.49%
  • Veröffentlicht 01.04.2014 06:35:52
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Buffer overflow in hw/scsi-disk.c in the SCSI subsystem in QEMU before 0.15.2, as used by Xen, might allow local guest users with permission to access the CD-ROM to cause a denial of service (guest crash) via a crafted SAI READ CAPACITY SCSI command....

  • EPSS 2.26%
  • Veröffentlicht 26.02.2014 15:55:08
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Buffer overflow in the ccid_card_vscard_handle_message function in hw/ccid-card-passthru.c in QEMU before 0.15.2 and 1.x before 1.0-rc4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted VSC...

  • EPSS 0.59%
  • Veröffentlicht 19.01.2014 18:55:02
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The qdisk PV disk backend in qemu-xen in Xen 4.2.x and 4.3.x before 4.3.1, and qemu 1.1 and other versions, allows local HVM guests to cause a denial of service (domain grant reference consumption) via unspecified vectors.

  • EPSS 0.46%
  • Veröffentlicht 11.10.2013 22:55:40
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Use-after-free vulnerability in the virtio-pci implementation in Qemu 1.4.0 through 1.6.0 allows local users to cause a denial of service (daemon crash) by "hot-unplugging" a virtio device.