rpm package
suse/qemu&distro=SUSE Linux Enterprise High Performance Computing 15-ESPOS
pkg:rpm/suse/qemu&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS
Vulnerabilities (47)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-1983 | — | < 2.11.2-9.36.1 | 2.11.2-9.36.1 | Apr 22, 2020 | A use after free vulnerability in ip_reass() in ip_input.c of libslirp 4.2.0 and prior releases allows crafted packets to cause a denial of service. | ||
| CVE-2019-20382 | — | < 2.11.2-9.36.1 | 2.11.2-9.36.1 | Mar 5, 2020 | QEMU 4.1.0 has a memory leak in zrle_compress_data in ui/vnc-enc-zrle.c during a VNC disconnect operation because libz is misused, resulting in a situation where memory allocated in deflateInit2 is not freed in deflateEnd. | ||
| CVE-2020-1711 | — | < 2.11.2-9.36.1 | 2.11.2-9.36.1 | Feb 11, 2020 | An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU versions 2.12.0 before 4.2.1 handled a response coming from an iSCSI server while checking the status of a Logical Address Block (LBA) in an iscsi_co_block_status() routine. A remote user | ||
| CVE-2020-8608 | — | < 2.11.2-9.36.1 | 2.11.2-9.36.1 | Feb 6, 2020 | In libslirp 4.1.0, as used in QEMU 4.2.0, tcp_subr.c misuses snprintf return values, leading to a buffer overflow in later code. | ||
| CVE-2020-7039 | — | < 2.11.2-9.36.1 | 2.11.2-9.36.1 | Jan 16, 2020 | tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanages memory, as demonstrated by IRC DCC commands in EMU_IRC. This can cause a heap-based buffer overflow or other out-of-bounds access which can lead to a DoS or potential execute arbitrary code. | ||
| CVE-2019-15890 | — | < 2.11.2-9.46.1 | 2.11.2-9.46.1 | Sep 6, 2019 | libslirp 4.0.0, as used in QEMU 4.1.0, has a use-after-free in ip_reass in ip_input.c. | ||
| CVE-2019-6778 | — | < 2.11.2-9.36.1 | 2.11.2-9.36.1 | Mar 17, 2019 | In QEMU 3.0.0, tcp_emu in slirp/tcp_subr.c has a heap-based buffer overflow. |
- CVE-2020-1983Apr 22, 2020affected < 2.11.2-9.36.1fixed 2.11.2-9.36.1
A use after free vulnerability in ip_reass() in ip_input.c of libslirp 4.2.0 and prior releases allows crafted packets to cause a denial of service.
- CVE-2019-20382Mar 5, 2020affected < 2.11.2-9.36.1fixed 2.11.2-9.36.1
QEMU 4.1.0 has a memory leak in zrle_compress_data in ui/vnc-enc-zrle.c during a VNC disconnect operation because libz is misused, resulting in a situation where memory allocated in deflateInit2 is not freed in deflateEnd.
- CVE-2020-1711Feb 11, 2020affected < 2.11.2-9.36.1fixed 2.11.2-9.36.1
An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU versions 2.12.0 before 4.2.1 handled a response coming from an iSCSI server while checking the status of a Logical Address Block (LBA) in an iscsi_co_block_status() routine. A remote user
- CVE-2020-8608Feb 6, 2020affected < 2.11.2-9.36.1fixed 2.11.2-9.36.1
In libslirp 4.1.0, as used in QEMU 4.2.0, tcp_subr.c misuses snprintf return values, leading to a buffer overflow in later code.
- CVE-2020-7039Jan 16, 2020affected < 2.11.2-9.36.1fixed 2.11.2-9.36.1
tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanages memory, as demonstrated by IRC DCC commands in EMU_IRC. This can cause a heap-based buffer overflow or other out-of-bounds access which can lead to a DoS or potential execute arbitrary code.
- CVE-2019-15890Sep 6, 2019affected < 2.11.2-9.46.1fixed 2.11.2-9.46.1
libslirp 4.0.0, as used in QEMU 4.1.0, has a use-after-free in ip_reass in ip_input.c.
- CVE-2019-6778Mar 17, 2019affected < 2.11.2-9.36.1fixed 2.11.2-9.36.1
In QEMU 3.0.0, tcp_emu in slirp/tcp_subr.c has a heap-based buffer overflow.
Page 3 of 3