rpm package

suse/kvm&distro=SUSE Linux Enterprise Server 11 SP3-TERADATA

pkg:rpm/suse/kvm&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-TERADATA

Vulnerabilities (84)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2018-5683		—	< 1.4.2-53.17.1	1.4.2-53.17.1	Jan 23, 2018	The vga_draw_text function in Qemu allows local OS guest privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) by leveraging improper memory address validation.
CVE-2017-18030		—	< 1.4.2-53.17.1	1.4.2-53.17.1	Jan 23, 2018	The cirrus_invalidate_region function in hw/display/cirrus_vga.c in Qemu allows local OS guest privileged users to cause a denial of service (out-of-bounds array access and QEMU process crash) via vectors related to negative pitch.
CVE-2017-5715		—	< 1.4.2-53.14.1	1.4.2-53.14.1	Jan 4, 2018	Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2015-7549	Med	6.0	< 1.4.2-46.1	1.4.2-46.1	Oct 30, 2017	The MSI-X MMIO support in hw/pci/msix.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (NULL pointer dereference and QEMU process crash) by leveraging failure to define the .write method.
CVE-2017-15289	Med	6.0	< 1.4.2-53.11.1	1.4.2-53.11.1	Oct 16, 2017	The mode4and5 write functions in hw/display/cirrus_vga.c in Qemu allow local OS guest privileged users to cause a denial of service (out-of-bounds write access and Qemu process crash) via vectors related to dst calculation.
CVE-2017-15038	Med	5.6	< 1.4.2-53.11.1	1.4.2-53.11.1	Oct 10, 2017	Race condition in the v9fs_xattrwalk function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS users to obtain sensitive information from host heap memory via vectors related to reading extended attributes.
CVE-2017-14167	Hig	8.8	< 1.4.2-53.11.1	1.4.2-53.11.1	Sep 8, 2017	Integer overflow in the load_multiboot function in hw/i386/multiboot.c in QEMU (aka Quick Emulator) allows local guest OS users to execute arbitrary code on the host via crafted multiboot header address values, which trigger an out-of-bounds write.
CVE-2017-13672	Med	5.5	< 1.4.2-53.11.1	1.4.2-53.11.1	Sep 1, 2017	QEMU (aka Quick Emulator), when built with the VGA display emulator support, allows local guest OS privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) via vectors involving display update.
CVE-2017-11334	Med	4.4	< 1.4.2-53.11.1	1.4.2-53.11.1	Aug 2, 2017	The address_space_write_continue function in exec.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds access and guest instance crash) by leveraging use of qemu_map_ram_ptr to access guest ram block area.
CVE-2017-10806	Med	5.5	< 1.4.2-53.11.1	1.4.2-53.11.1	Aug 2, 2017	Stack-based buffer overflow in hw/usb/redirect.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (QEMU process crash) via vectors related to logging debug messages.
CVE-2017-10664	Hig	7.5	< 1.4.2-53.11.1	1.4.2-53.11.1	Aug 2, 2017	qemu-nbd in QEMU (aka Quick Emulator) does not ignore SIGPIPE, which allows remote attackers to cause a denial of service (daemon crash) by disconnecting during a server-to-client reply attempt.
CVE-2017-11434	Med	5.5	< 1.4.2-53.11.1	1.4.2-53.11.1	Jul 25, 2017	The dhcp_decode function in slirp/bootp.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (out-of-bounds read and QEMU process crash) via a crafted DHCP options string.
CVE-2017-7980	Hig	7.8	< 1.4.2-53.11.1	1.4.2-53.11.1	Jul 25, 2017	Heap-based buffer overflow in Cirrus CLGD 54xx VGA Emulator in Quick Emulator (Qemu) 2.8 and earlier allows local guest OS users to execute arbitrary code or cause a denial of service (crash) via vectors related to a VNC client updating its display after a VGA operation.
CVE-2017-9503	Med	5.5	< 1.4.2-53.11.1	1.4.2-53.11.1	Jun 16, 2017	QEMU (aka Quick Emulator), when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS privileged users to cause a denial of service (NULL pointer dereference and QEMU process crash) via vectors involving megasas command processing.
CVE-2017-9375	Med	5.5	< 1.4.2-53.11.1	1.4.2-53.11.1	Jun 16, 2017	QEMU (aka Quick Emulator), when built with USB xHCI controller emulator support, allows local guest OS privileged users to cause a denial of service (infinite recursive call) via vectors involving control transfer descriptors sequencing.
CVE-2017-9373	Med	5.5	< 1.4.2-53.11.1	1.4.2-53.11.1	Jun 16, 2017	Memory leak in QEMU (aka Quick Emulator), when built with IDE AHCI Emulation support, allows local guest OS privileged users to cause a denial of service (memory consumption) by repeatedly hot-unplugging the AHCI device.
CVE-2017-9330	Med	5.6	< 1.4.2-53.11.1	1.4.2-53.11.1	Jun 8, 2017	QEMU (aka Quick Emulator) before 2.9.0, when built with the USB OHCI Emulation support, allows local guest OS users to cause a denial of service (infinite loop) by leveraging an incorrect return value, a different vulnerability than CVE-2017-6505.
CVE-2017-8309	Hig	7.5	< 1.4.2-53.11.1	1.4.2-53.11.1	May 23, 2017	Memory leak in the audio/audio.c in QEMU (aka Quick Emulator) allows remote attackers to cause a denial of service (memory consumption) by repeatedly starting and stopping audio capture.
CVE-2017-7493	Hig	7.8	< 1.4.2-53.11.1	1.4.2-53.11.1	May 17, 2017	Quick Emulator (Qemu) built with the VirtFS, host directory sharing via Plan 9 File System(9pfs) support, is vulnerable to an improper access control issue. It could occur while accessing virtfs metadata files in mapped-file security mode. A guest user could use this flaw to esca
CVE-2017-8086	Med	6.5	< 1.4.2-53.11.1	1.4.2-53.11.1	May 2, 2017	Memory leak in the v9fs_list_xattr function in hw/9pfs/9p-xattr.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (memory consumption) via vectors involving the orig_value variable.

CVE-2018-5683Jan 23, 2018
affected < 1.4.2-53.17.1fixed 1.4.2-53.17.1
The vga_draw_text function in Qemu allows local OS guest privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) by leveraging improper memory address validation.
CVE-2017-18030Jan 23, 2018
affected < 1.4.2-53.17.1fixed 1.4.2-53.17.1
The cirrus_invalidate_region function in hw/display/cirrus_vga.c in Qemu allows local OS guest privileged users to cause a denial of service (out-of-bounds array access and QEMU process crash) via vectors related to negative pitch.
CVE-2017-5715Jan 4, 2018
affected < 1.4.2-53.14.1fixed 1.4.2-53.14.1
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2015-7549MedOct 30, 2017
affected < 1.4.2-46.1fixed 1.4.2-46.1
The MSI-X MMIO support in hw/pci/msix.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (NULL pointer dereference and QEMU process crash) by leveraging failure to define the .write method.
CVE-2017-15289MedOct 16, 2017
affected < 1.4.2-53.11.1fixed 1.4.2-53.11.1
The mode4and5 write functions in hw/display/cirrus_vga.c in Qemu allow local OS guest privileged users to cause a denial of service (out-of-bounds write access and Qemu process crash) via vectors related to dst calculation.
CVE-2017-15038MedOct 10, 2017
affected < 1.4.2-53.11.1fixed 1.4.2-53.11.1
Race condition in the v9fs_xattrwalk function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS users to obtain sensitive information from host heap memory via vectors related to reading extended attributes.
CVE-2017-14167HigSep 8, 2017
affected < 1.4.2-53.11.1fixed 1.4.2-53.11.1
Integer overflow in the load_multiboot function in hw/i386/multiboot.c in QEMU (aka Quick Emulator) allows local guest OS users to execute arbitrary code on the host via crafted multiboot header address values, which trigger an out-of-bounds write.
CVE-2017-13672MedSep 1, 2017
affected < 1.4.2-53.11.1fixed 1.4.2-53.11.1
QEMU (aka Quick Emulator), when built with the VGA display emulator support, allows local guest OS privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) via vectors involving display update.
CVE-2017-11334MedAug 2, 2017
affected < 1.4.2-53.11.1fixed 1.4.2-53.11.1
The address_space_write_continue function in exec.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds access and guest instance crash) by leveraging use of qemu_map_ram_ptr to access guest ram block area.
CVE-2017-10806MedAug 2, 2017
affected < 1.4.2-53.11.1fixed 1.4.2-53.11.1
Stack-based buffer overflow in hw/usb/redirect.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (QEMU process crash) via vectors related to logging debug messages.
CVE-2017-10664HigAug 2, 2017
affected < 1.4.2-53.11.1fixed 1.4.2-53.11.1
qemu-nbd in QEMU (aka Quick Emulator) does not ignore SIGPIPE, which allows remote attackers to cause a denial of service (daemon crash) by disconnecting during a server-to-client reply attempt.
CVE-2017-11434MedJul 25, 2017
affected < 1.4.2-53.11.1fixed 1.4.2-53.11.1
The dhcp_decode function in slirp/bootp.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (out-of-bounds read and QEMU process crash) via a crafted DHCP options string.
CVE-2017-7980HigJul 25, 2017
affected < 1.4.2-53.11.1fixed 1.4.2-53.11.1
Heap-based buffer overflow in Cirrus CLGD 54xx VGA Emulator in Quick Emulator (Qemu) 2.8 and earlier allows local guest OS users to execute arbitrary code or cause a denial of service (crash) via vectors related to a VNC client updating its display after a VGA operation.
CVE-2017-9503MedJun 16, 2017
affected < 1.4.2-53.11.1fixed 1.4.2-53.11.1
QEMU (aka Quick Emulator), when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS privileged users to cause a denial of service (NULL pointer dereference and QEMU process crash) via vectors involving megasas command processing.
CVE-2017-9375MedJun 16, 2017
affected < 1.4.2-53.11.1fixed 1.4.2-53.11.1
QEMU (aka Quick Emulator), when built with USB xHCI controller emulator support, allows local guest OS privileged users to cause a denial of service (infinite recursive call) via vectors involving control transfer descriptors sequencing.
CVE-2017-9373MedJun 16, 2017
affected < 1.4.2-53.11.1fixed 1.4.2-53.11.1
Memory leak in QEMU (aka Quick Emulator), when built with IDE AHCI Emulation support, allows local guest OS privileged users to cause a denial of service (memory consumption) by repeatedly hot-unplugging the AHCI device.
CVE-2017-9330MedJun 8, 2017
affected < 1.4.2-53.11.1fixed 1.4.2-53.11.1
QEMU (aka Quick Emulator) before 2.9.0, when built with the USB OHCI Emulation support, allows local guest OS users to cause a denial of service (infinite loop) by leveraging an incorrect return value, a different vulnerability than CVE-2017-6505.
CVE-2017-8309HigMay 23, 2017
affected < 1.4.2-53.11.1fixed 1.4.2-53.11.1
Memory leak in the audio/audio.c in QEMU (aka Quick Emulator) allows remote attackers to cause a denial of service (memory consumption) by repeatedly starting and stopping audio capture.
CVE-2017-7493HigMay 17, 2017
affected < 1.4.2-53.11.1fixed 1.4.2-53.11.1
Quick Emulator (Qemu) built with the VirtFS, host directory sharing via Plan 9 File System(9pfs) support, is vulnerable to an improper access control issue. It could occur while accessing virtfs metadata files in mapped-file security mode. A guest user could use this flaw to esca
CVE-2017-8086MedMay 2, 2017
affected < 1.4.2-53.11.1fixed 1.4.2-53.11.1
Memory leak in the v9fs_list_xattr function in hw/9pfs/9p-xattr.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (memory consumption) via vectors involving the orig_value variable.

Page 2 of 5