VYPR

apk package

wolfi/qemu-ipxe

pkg:apk/wolfi/qemu-ipxe

Vulnerabilities (4)

  • CVE-2024-6519Oct 21, 2024
    affected < 11.0.1-r0fixed 11.0.1-r0

    A use-after-free vulnerability was found in the QEMU LSI53C895A SCSI Host Bus Adapter emulation. This issue can lead to a crash or VM escape.

  • CVE-2023-2680Sep 13, 2023
    affected < 0fixed 0

    This CVE exists because of an incomplete fix for CVE-2021-3750. More specifically, the qemu-kvm package as released for Red Hat Enterprise Linux 9.1 via RHSA-2022:7967 included a version of qemu-kvm that was actually missing the fix for CVE-2021-3750.

  • CVE-2021-20255Mar 9, 2021
    affected < 11.0.1-r0fixed 11.0.1-r0

    A stack overflow via an infinite recursion vulnerability was found in the eepro100 i8255x device emulator of QEMU. This issue occurs while processing controller commands due to a DMA reentry issue. This flaw allows a guest user or process to consume CPU cycles or crash the QEMU p

  • CVE-2018-18438Oct 19, 2018
    affected < 0fixed 0

    Qemu has integer overflows because IOReadHandler and its associated functions use a signed integer data type for a size value.