VYPR

rpm package

suse/qemu&distro=SUSE Linux Enterprise Desktop 12 SP2

pkg:rpm/suse/qemu&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP2

Vulnerabilities (89)

  • CVE-2016-9776MedDec 29, 2016
    affected < 2.6.2-39.1fixed 2.6.2-39.1

    QEMU (aka Quick Emulator) built with the ColdFire Fast Ethernet Controller emulator support is vulnerable to an infinite loop issue. It could occur while receiving packets in 'mcf_fec_receive'. A privileged user/process inside guest could use this issue to crash the QEMU process

  • CVE-2016-9921MedDec 23, 2016
    affected < 2.6.2-39.1fixed 2.6.2-39.1

    Quick emulator (Qemu) built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to a divide by zero issue. It could occur while copying VGA data when cirrus graphics mode was set to be VGA. A privileged user inside guest could use this flaw to crash the Qemu process inst

  • CVE-2016-9912MedDec 23, 2016
    affected < 2.6.2-39.1fixed 2.6.2-39.1

    Quick Emulator (Qemu) built with the Virtio GPU Device emulator support is vulnerable to a memory leakage issue. It could occur while destroying gpu resource object in 'virtio_gpu_resource_destroy'. A guest user/process could use this flaw to leak host memory bytes, resulting in

  • CVE-2016-9911MedDec 23, 2016
    affected < 2.6.2-39.1fixed 2.6.2-39.1

    Quick Emulator (Qemu) built with the USB EHCI Emulation support is vulnerable to a memory leakage issue. It could occur while processing packet data in 'ehci_init_transfer'. A guest user/process could use this issue to leak host memory, resulting in DoS for a host.

  • CVE-2016-9908LowDec 23, 2016
    affected < 2.6.2-39.1fixed 2.6.2-39.1

    Quick Emulator (Qemu) built with the Virtio GPU Device emulator support is vulnerable to an information leakage issue. It could occur while processing 'VIRTIO_GPU_CMD_GET_CAPSET' command. A guest user/process could use this flaw to leak contents of the host memory bytes.

  • CVE-2016-9907MedDec 23, 2016
    affected < 2.6.2-39.1fixed 2.6.2-39.1

    Quick Emulator (Qemu) built with the USB redirector usb-guest support is vulnerable to a memory leakage flaw. It could occur while destroying the USB redirector in 'usbredir_handle_destroy'. A guest user/process could use this issue to leak host memory, resulting in DoS for a hos

  • CVE-2016-7995MedDec 10, 2016
    affected < 2.6.2-31.2fixed 2.6.2-31.2

    Memory leak in the ehci_process_itd function in hw/usb/hcd-ehci.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption) via a large number of crafted buffer page select (PG) indexes.

  • CVE-2016-7994MedDec 10, 2016
    affected < 2.6.2-31.2fixed 2.6.2-31.2

    Memory leak in the virtio_gpu_resource_create_2d function in hw/display/virtio-gpu.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption) via a large number of VIRTIO_GPU_CMD_RESOURCE_CREATE_2D commands.

  • CVE-2016-7466MedDec 10, 2016
    affected < 2.6.2-31.2fixed 2.6.2-31.2

    Memory leak in the usb_xhci_exit function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator), when the xhci uses msix, allows local guest OS administrators to cause a denial of service (memory consumption and possibly QEMU process crash) by repeatedly unplugging a USB device.

  • CVE-2016-7422MedDec 10, 2016
    affected < 2.6.2-31.2fixed 2.6.2-31.2

    The virtqueue_map_desc function in hw/virtio/virtio.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (NULL pointer dereference and QEMU process crash) via a large I/O descriptor buffer length value.

  • CVE-2016-7170MedDec 10, 2016
    affected < 2.6.2-31.2fixed 2.6.2-31.2

    The vmsvga_fifo_run function in hw/display/vmware_vga.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) via vectors related to cursor.mask[] and cursor.image[] array sizes when processing

  • CVE-2016-9106MedDec 9, 2016
    affected < 2.6.2-31.2fixed 2.6.2-31.2

    Memory leak in the v9fs_write function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption) by leveraging failure to free an IO vector.

  • CVE-2016-9105MedDec 9, 2016
    affected < 2.6.2-31.2fixed 2.6.2-31.2

    Memory leak in the v9fs_link function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption) via vectors involving a reference to the source fid object.

  • CVE-2016-9104MedDec 9, 2016
    affected < 2.6.2-31.2fixed 2.6.2-31.2

    Multiple integer overflows in the (1) v9fs_xattr_read and (2) v9fs_xattr_write functions in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allow local guest OS administrators to cause a denial of service (QEMU process crash) via a crafted offset, which triggers an out-of-bounds access

  • CVE-2016-9103MedDec 9, 2016
    affected < 2.6.2-39.1fixed 2.6.2-39.1

    The v9fs_xattrcreate function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS administrators to obtain sensitive host heap memory information by reading xattribute values before writing to them.

  • CVE-2016-9102MedDec 9, 2016
    affected < 2.6.2-39.1fixed 2.6.2-39.1

    Memory leak in the v9fs_xattrcreate function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption and QEMU process crash) via a large number of Txattrcreate messages with the same fid number.

  • CVE-2016-9101MedDec 9, 2016
    affected < 2.6.2-31.2fixed 2.6.2-31.2

    Memory leak in hw/net/eepro100.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption and QEMU process crash) by repeatedly unplugging an i8255x (PRO100) NIC device.

  • CVE-2016-8910MedNov 4, 2016
    affected < 2.6.2-31.2fixed 2.6.2-31.2

    The rtl8139_cplus_transmit function in hw/net/rtl8139.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) by leveraging failure to limit the ring descriptor count.

  • CVE-2016-8909MedNov 4, 2016
    affected < 2.6.2-31.2fixed 2.6.2-31.2

    The intel_hda_xfer function in hw/audio/intel-hda.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) via an entry with the same value for buffer length and pointer position.

  • CVE-2016-8669MedNov 4, 2016
    affected < 2.6.2-31.2fixed 2.6.2-31.2

    The serial_update_parameters function in hw/char/serial.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (divide-by-zero error and QEMU process crash) via vectors involving a value of divider greater than baud base.

Page 4 of 5