rpm package
suse/qemu&distro=SUSE Linux Enterprise Desktop 12 SP4
pkg:rpm/suse/qemu&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP4
Vulnerabilities (27)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-18954 | — | < 2.11.2-5.8.1 | 2.11.2-5.8.1 | Nov 15, 2018 | The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory. | ||
| CVE-2018-16847 | — | < 2.11.2-5.5.1 | 2.11.2-5.5.1 | Nov 2, 2018 | An OOB heap buffer r/w access issue was found in the NVM Express Controller emulation in QEMU. It could occur in nvme_cmb_ops routines in nvme device. A guest user/process could use this flaw to crash the QEMU process resulting in DoS or potentially run arbitrary code with privil | ||
| CVE-2018-10839 | — | < 2.11.2-5.5.1 | 2.11.2-5.5.1 | Oct 16, 2018 | Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is vulnerable to an integer overflow, which could lead to buffer overflow issue. It could occur when receiving packets over the network. A user inside guest could use this flaw to crash the Qemu process resulting | ||
| CVE-2018-17963 | Cri | 9.8 | < 2.11.2-5.5.1 | 2.11.2-5.5.1 | Oct 9, 2018 | qemu_deliver_packet_iov in net/net.c in Qemu accepts packet sizes greater than INT_MAX, which allows attackers to cause a denial of service or possibly have unspecified other impact. | |
| CVE-2018-17962 | Hig | 7.5 | < 2.11.2-5.5.1 | 2.11.2-5.5.1 | Oct 9, 2018 | Qemu has a Buffer Overflow in pcnet_receive in hw/net/pcnet.c because an incorrect integer data type is used. | |
| CVE-2018-17958 | Hig | 7.5 | < 2.11.2-5.5.1 | 2.11.2-5.5.1 | Oct 9, 2018 | Qemu has a Buffer Overflow in rtl8139_do_receive in hw/net/rtl8139.c because an incorrect integer data type is used. | |
| CVE-2018-15746 | Med | 5.5 | < 2.11.2-5.5.1 | 2.11.2-5.5.1 | Aug 29, 2018 | qemu-seccomp.c in QEMU might allow local OS guest users to cause a denial of service (guest crash) by leveraging mishandling of the seccomp policy for threads other than the main thread. |
- CVE-2018-18954Nov 15, 2018affected < 2.11.2-5.8.1fixed 2.11.2-5.8.1
The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory.
- CVE-2018-16847Nov 2, 2018affected < 2.11.2-5.5.1fixed 2.11.2-5.5.1
An OOB heap buffer r/w access issue was found in the NVM Express Controller emulation in QEMU. It could occur in nvme_cmb_ops routines in nvme device. A guest user/process could use this flaw to crash the QEMU process resulting in DoS or potentially run arbitrary code with privil
- CVE-2018-10839Oct 16, 2018affected < 2.11.2-5.5.1fixed 2.11.2-5.5.1
Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is vulnerable to an integer overflow, which could lead to buffer overflow issue. It could occur when receiving packets over the network. A user inside guest could use this flaw to crash the Qemu process resulting
- affected < 2.11.2-5.5.1fixed 2.11.2-5.5.1
qemu_deliver_packet_iov in net/net.c in Qemu accepts packet sizes greater than INT_MAX, which allows attackers to cause a denial of service or possibly have unspecified other impact.
- affected < 2.11.2-5.5.1fixed 2.11.2-5.5.1
Qemu has a Buffer Overflow in pcnet_receive in hw/net/pcnet.c because an incorrect integer data type is used.
- affected < 2.11.2-5.5.1fixed 2.11.2-5.5.1
Qemu has a Buffer Overflow in rtl8139_do_receive in hw/net/rtl8139.c because an incorrect integer data type is used.
- affected < 2.11.2-5.5.1fixed 2.11.2-5.5.1
qemu-seccomp.c in QEMU might allow local OS guest users to cause a denial of service (guest crash) by leveraging mishandling of the seccomp policy for threads other than the main thread.
Page 2 of 2