rpm package

almalinux/libvirt-daemon-kvm

pkg:rpm/almalinux/libvirt-daemon-kvm

Vulnerabilities (68)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2021-33286	—	< 8.0.0-5.module_el8.6.0+2880+7d9e3703	8.0.0-5.module_el8.6.0+2880+7d9e3703	Sep 7, 2021	In NTFS-3G versions < 2021.8.22, when a specially crafted unicode string is supplied in an NTFS image a heap buffer overflow can occur and allow for code execution.
CVE-2021-33285	—	< 8.0.0-5.module_el8.6.0+2880+7d9e3703	8.0.0-5.module_el8.6.0+2880+7d9e3703	Sep 7, 2021	In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS attribute is supplied to the function ntfs_get_attribute_value, a heap buffer overflow can occur allowing for memory disclosure or denial of service. The vulnerability is caused by an out-of-bound buffer access which
CVE-2021-3595	—	< 6.0.0-37.module_el8.5.0+2608+72063365	6.0.0-37.module_el8.5.0+2608+72063365	Jun 15, 2021	An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the tftp_input() function and could occur while processing a udp packet that is smaller than the size of the 'tftp_t' structure. This issue may lead to out-of-boun
CVE-2021-3594	—	< 6.0.0-37.module_el8.5.0+2608+72063365	6.0.0-37.module_el8.5.0+2608+72063365	Jun 15, 2021	An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udp_input() function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-bound
CVE-2021-3593	—	< 6.0.0-37.module_el8.5.0+2608+72063365	6.0.0-37.module_el8.5.0+2608+72063365	Jun 15, 2021	An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udp6_input() function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-boun
CVE-2021-3592	—	< 6.0.0-37.module_el8.5.0+2608+72063365	6.0.0-37.module_el8.5.0+2608+72063365	Jun 15, 2021	An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the bootp_input() function and could occur while processing a udp packet that is smaller than the size of the 'bootp_t' structure. A malicious guest could use this
CVE-2021-20196	—	< 8.0.0-5.module_el8.6.0+2880+7d9e3703	8.0.0-5.module_el8.6.0+2880+7d9e3703	May 26, 2021	A NULL pointer dereference flaw was found in the floppy disk emulator of QEMU. This issue occurs while processing read/write ioport commands if the selected floppy drive is not initialized with a block device. This flaw allows a privileged guest user to crash the QEMU process on
CVE-2020-15859	—	< 6.0.0-37.module_el8.5.0+2608+72063365	6.0.0-37.module_el8.5.0+2608+72063365	Jul 21, 2020	QEMU 4.2.0 has a use-after-free in hw/net/e1000e_core.c because a guest OS user can trigger an e1000e packet with the data's address set to the e1000e's MMIO address.

CVE-2021-33286Sep 7, 2021
affected < 8.0.0-5.module_el8.6.0+2880+7d9e3703fixed 8.0.0-5.module_el8.6.0+2880+7d9e3703
In NTFS-3G versions < 2021.8.22, when a specially crafted unicode string is supplied in an NTFS image a heap buffer overflow can occur and allow for code execution.
CVE-2021-33285Sep 7, 2021
affected < 8.0.0-5.module_el8.6.0+2880+7d9e3703fixed 8.0.0-5.module_el8.6.0+2880+7d9e3703
In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS attribute is supplied to the function ntfs_get_attribute_value, a heap buffer overflow can occur allowing for memory disclosure or denial of service. The vulnerability is caused by an out-of-bound buffer access which
CVE-2021-3595Jun 15, 2021
affected < 6.0.0-37.module_el8.5.0+2608+72063365fixed 6.0.0-37.module_el8.5.0+2608+72063365
An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the tftp_input() function and could occur while processing a udp packet that is smaller than the size of the 'tftp_t' structure. This issue may lead to out-of-boun
CVE-2021-3594Jun 15, 2021
affected < 6.0.0-37.module_el8.5.0+2608+72063365fixed 6.0.0-37.module_el8.5.0+2608+72063365
An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udp_input() function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-bound
CVE-2021-3593Jun 15, 2021
affected < 6.0.0-37.module_el8.5.0+2608+72063365fixed 6.0.0-37.module_el8.5.0+2608+72063365
An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udp6_input() function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-boun
CVE-2021-3592Jun 15, 2021
affected < 6.0.0-37.module_el8.5.0+2608+72063365fixed 6.0.0-37.module_el8.5.0+2608+72063365
An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the bootp_input() function and could occur while processing a udp packet that is smaller than the size of the 'bootp_t' structure. A malicious guest could use this
CVE-2021-20196May 26, 2021
affected < 8.0.0-5.module_el8.6.0+2880+7d9e3703fixed 8.0.0-5.module_el8.6.0+2880+7d9e3703
A NULL pointer dereference flaw was found in the floppy disk emulator of QEMU. This issue occurs while processing read/write ioport commands if the selected floppy drive is not initialized with a block device. This flaw allows a privileged guest user to crash the QEMU process on
CVE-2020-15859Jul 21, 2020
affected < 6.0.0-37.module_el8.5.0+2608+72063365fixed 6.0.0-37.module_el8.5.0+2608+72063365
QEMU 4.2.0 has a use-after-free in hw/net/e1000e_core.c because a guest OS user can trigger an e1000e packet with the data's address set to the e1000e's MMIO address.

Page 4 of 4