VYPR

apk package

wolfi/qemu-user

pkg:apk/wolfi/qemu-user

Vulnerabilities (2)

  • CVE-2023-2680Sep 13, 2023
    affected < 0fixed 0

    This CVE exists because of an incomplete fix for CVE-2021-3750. More specifically, the qemu-kvm package as released for Red Hat Enterprise Linux 9.1 via RHSA-2022:7967 included a version of qemu-kvm that was actually missing the fix for CVE-2021-3750.

  • CVE-2018-18438Oct 19, 2018
    affected < 0fixed 0

    Qemu has integer overflows because IOReadHandler and its associated functions use a signed integer data type for a size value.