rpm package

suse/xen&distro=SUSE Linux Enterprise Desktop 12 SP1

pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1

Vulnerabilities (132)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2015-6815		—	< 4.5.2_02-4.1	4.5.2_02-4.1	Jan 31, 2020	The process_tx_desc function in hw/net/e1000.c in QEMU before 2.4.0.1 does not properly process transmit descriptor data when sending a network packet, which allows attackers to cause a denial of service (infinite loop and guest crash) via unspecified vectors.
CVE-2015-5239		—	< 4.5.2_02-4.1	4.5.2_02-4.1	Jan 23, 2020	Integer overflow in the VNC display driver in QEMU before 2.1.0 allows attachers to cause a denial of service (process crash) via a CLIENT_CUT_TEXT message, which triggers an infinite loop.
CVE-2015-5278		—	< 4.5.2_06-7.1	4.5.2_06-7.1	Jan 23, 2020	The ne2000_receive function in hw/net/ne2000.c in QEMU before 2.4.0.1 allows attackers to cause a denial of service (infinite loop and instance crash) or possibly execute arbitrary code via vectors related to receiving packets.
CVE-2016-9603		—	< 4.5.5_10-22.14.1	4.5.5_10-22.14.1	Jul 27, 2018	A heap buffer overflow flaw was found in QEMU's Cirrus CLGD 54xx VGA emulator's VNC display driver support before 2.9; the issue could occur when a VNC client attempted to update its display after a VGA operation is performed by a guest. A privileged user/process inside a guest c
CVE-2017-2633		—	< 4.5.5_10-22.14.1	4.5.5_10-22.14.1	Jul 27, 2018	An out-of-bounds memory access issue was found in Quick Emulator (QEMU) before 1.7.2 in the VNC display driver. This flaw could occur while refreshing the VNC display surface area in the 'vnc_refresh_server_surface'. A user inside a guest could use this flaw to crash the QEMU pro
CVE-2017-2620		—	< 4.5.5_06-22.11.2	4.5.5_06-22.11.2	Jul 27, 2018	Quick emulator (QEMU) before 2.8 built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The issue could occur while copying VGA data in cirrus_bitblt_cputovideo. A privileged user inside guest could use this flaw to crash the QEMU pro
CVE-2017-2615		—	< 4.5.5_06-22.11.2	4.5.5_06-22.11.2	Jul 2, 2018	Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could occur while copying VGA data via bitblt copy in backward mode. A privileged user inside a guest could use this flaw to crash the QEMU process result
CVE-2015-7549	Med	6.0	< 4.5.2_06-7.1	4.5.2_06-7.1	Oct 30, 2017	The MSI-X MMIO support in hw/pci/msix.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (NULL pointer dereference and QEMU process crash) by leveraging failure to define the .write method.
CVE-2015-7504	Hig	8.8	< 4.5.2_02-4.1	4.5.2_02-4.1	Oct 16, 2017	Heap-based buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU allows guest OS administrators to cause a denial of service (instance crash) or possibly execute arbitrary code via a series of packets in loopback mode.
CVE-2017-7980	Hig	7.8	< 4.5.5_10-22.14.1	4.5.5_10-22.14.1	Jul 25, 2017	Heap-based buffer overflow in Cirrus CLGD 54xx VGA Emulator in Quick Emulator (Qemu) 2.8 and earlier allows local guest OS users to execute arbitrary code or cause a denial of service (crash) via vectors related to a VNC client updating its display after a VGA operation.
CVE-2017-7718	Med	5.5	< 4.5.5_10-22.14.1	4.5.5_10-22.14.1	Apr 20, 2017	hw/display/cirrus_vga_rop.h in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) via vectors related to copying VGA data via the cirrus_bitblt_rop_fwd_transp_ and cirrus_bitblt_rop_fwd_ functi
CVE-2015-8619	Hig	7.5	< 4.5.2_06-7.1	4.5.2_06-7.1	Apr 13, 2017	The Human Monitor Interface support in QEMU allows remote attackers to cause a denial of service (out-of-bounds write and application crash).
CVE-2015-8567	Hig	7.7	< 4.5.2_06-7.1	4.5.2_06-7.1	Apr 13, 2017	Memory leak in net/vmxnet3.c in QEMU allows remote attackers to cause a denial of service (memory consumption).
CVE-2015-8345	Med	6.5	< 4.5.2_02-4.1	4.5.2_02-4.1	Apr 13, 2017	The eepro100 emulator in QEMU qemu-kvm blank allows local guest users to cause a denial of service (application crash and infinite loop) via vectors involving the command block list.
CVE-2015-8613	Med	6.5	< 4.5.2_06-7.1	4.5.2_06-7.1	Apr 11, 2017	Stack-based buffer overflow in the megasas_ctrl_get_info function in QEMU, when built with SCSI MegaRAID SAS HBA emulation support, allows local guest users to cause a denial of service (QEMU instance crash) via a crafted SCSI controller CTRL_GET_INFO command.
CVE-2015-8568	Med	6.5	< 4.5.2_06-7.1	4.5.2_06-7.1	Apr 11, 2017	Memory leak in QEMU, when built with a VMWARE VMXNET3 paravirtual NIC emulator support, allows local guest users to cause a denial of service (host memory consumption) by trying to activate the vmxnet3 device repeatedly.
CVE-2015-8504	Med	6.5	< 4.5.2_06-7.1	4.5.2_06-7.1	Apr 11, 2017	Qemu, when built with VNC display driver support, allows remote attackers to cause a denial of service (arithmetic exception and application crash) via crafted SetPixelFormat messages from a client.
CVE-2017-5973	Med	5.5	< 4.5.5_06-22.11.2	4.5.5_06-22.11.2	Mar 27, 2017	The xhci_kick_epctx function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (infinite loop and QEMU process crash) via vectors related to control transfer descriptor sequence.
CVE-2016-9922	Med	5.5	< 4.5.5_06-22.11.2	4.5.5_06-22.11.2	Mar 27, 2017	The cirrus_do_copy function in hw/display/cirrus_vga.c in QEMU (aka Quick Emulator), when cirrus graphics mode is VGA, allows local guest OS privileged users to cause a denial of service (divide-by-zero error and QEMU process crash) via vectors involving blit pitch values.
CVE-2017-5856	Med	6.5	< 4.5.5_06-22.11.2	4.5.5_06-22.11.2	Mar 16, 2017	Memory leak in the megasas_handle_dcmd function in hw/scsi/megasas.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption) via MegaRAID Firmware Interface (MFI) commands with the sglist size set to a value over

CVE-2015-6815Jan 31, 2020
affected < 4.5.2_02-4.1fixed 4.5.2_02-4.1
The process_tx_desc function in hw/net/e1000.c in QEMU before 2.4.0.1 does not properly process transmit descriptor data when sending a network packet, which allows attackers to cause a denial of service (infinite loop and guest crash) via unspecified vectors.
CVE-2015-5239Jan 23, 2020
affected < 4.5.2_02-4.1fixed 4.5.2_02-4.1
Integer overflow in the VNC display driver in QEMU before 2.1.0 allows attachers to cause a denial of service (process crash) via a CLIENT_CUT_TEXT message, which triggers an infinite loop.
CVE-2015-5278Jan 23, 2020
affected < 4.5.2_06-7.1fixed 4.5.2_06-7.1
The ne2000_receive function in hw/net/ne2000.c in QEMU before 2.4.0.1 allows attackers to cause a denial of service (infinite loop and instance crash) or possibly execute arbitrary code via vectors related to receiving packets.
CVE-2016-9603Jul 27, 2018
affected < 4.5.5_10-22.14.1fixed 4.5.5_10-22.14.1
A heap buffer overflow flaw was found in QEMU's Cirrus CLGD 54xx VGA emulator's VNC display driver support before 2.9; the issue could occur when a VNC client attempted to update its display after a VGA operation is performed by a guest. A privileged user/process inside a guest c
CVE-2017-2633Jul 27, 2018
affected < 4.5.5_10-22.14.1fixed 4.5.5_10-22.14.1
An out-of-bounds memory access issue was found in Quick Emulator (QEMU) before 1.7.2 in the VNC display driver. This flaw could occur while refreshing the VNC display surface area in the 'vnc_refresh_server_surface'. A user inside a guest could use this flaw to crash the QEMU pro
CVE-2017-2620Jul 27, 2018
affected < 4.5.5_06-22.11.2fixed 4.5.5_06-22.11.2
Quick emulator (QEMU) before 2.8 built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The issue could occur while copying VGA data in cirrus_bitblt_cputovideo. A privileged user inside guest could use this flaw to crash the QEMU pro
CVE-2017-2615Jul 2, 2018
affected < 4.5.5_06-22.11.2fixed 4.5.5_06-22.11.2
Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could occur while copying VGA data via bitblt copy in backward mode. A privileged user inside a guest could use this flaw to crash the QEMU process result
CVE-2015-7549MedOct 30, 2017
affected < 4.5.2_06-7.1fixed 4.5.2_06-7.1
The MSI-X MMIO support in hw/pci/msix.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (NULL pointer dereference and QEMU process crash) by leveraging failure to define the .write method.
CVE-2015-7504HigOct 16, 2017
affected < 4.5.2_02-4.1fixed 4.5.2_02-4.1
Heap-based buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU allows guest OS administrators to cause a denial of service (instance crash) or possibly execute arbitrary code via a series of packets in loopback mode.
CVE-2017-7980HigJul 25, 2017
affected < 4.5.5_10-22.14.1fixed 4.5.5_10-22.14.1
Heap-based buffer overflow in Cirrus CLGD 54xx VGA Emulator in Quick Emulator (Qemu) 2.8 and earlier allows local guest OS users to execute arbitrary code or cause a denial of service (crash) via vectors related to a VNC client updating its display after a VGA operation.
CVE-2017-7718MedApr 20, 2017
affected < 4.5.5_10-22.14.1fixed 4.5.5_10-22.14.1
hw/display/cirrus_vga_rop.h in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) via vectors related to copying VGA data via the cirrus_bitblt_rop_fwd_transp_ and cirrus_bitblt_rop_fwd_ functi
CVE-2015-8619HigApr 13, 2017
affected < 4.5.2_06-7.1fixed 4.5.2_06-7.1
The Human Monitor Interface support in QEMU allows remote attackers to cause a denial of service (out-of-bounds write and application crash).
CVE-2015-8567HigApr 13, 2017
affected < 4.5.2_06-7.1fixed 4.5.2_06-7.1
Memory leak in net/vmxnet3.c in QEMU allows remote attackers to cause a denial of service (memory consumption).
CVE-2015-8345MedApr 13, 2017
affected < 4.5.2_02-4.1fixed 4.5.2_02-4.1
The eepro100 emulator in QEMU qemu-kvm blank allows local guest users to cause a denial of service (application crash and infinite loop) via vectors involving the command block list.
CVE-2015-8613MedApr 11, 2017
affected < 4.5.2_06-7.1fixed 4.5.2_06-7.1
Stack-based buffer overflow in the megasas_ctrl_get_info function in QEMU, when built with SCSI MegaRAID SAS HBA emulation support, allows local guest users to cause a denial of service (QEMU instance crash) via a crafted SCSI controller CTRL_GET_INFO command.
CVE-2015-8568MedApr 11, 2017
affected < 4.5.2_06-7.1fixed 4.5.2_06-7.1
Memory leak in QEMU, when built with a VMWARE VMXNET3 paravirtual NIC emulator support, allows local guest users to cause a denial of service (host memory consumption) by trying to activate the vmxnet3 device repeatedly.
CVE-2015-8504MedApr 11, 2017
affected < 4.5.2_06-7.1fixed 4.5.2_06-7.1
Qemu, when built with VNC display driver support, allows remote attackers to cause a denial of service (arithmetic exception and application crash) via crafted SetPixelFormat messages from a client.
CVE-2017-5973MedMar 27, 2017
affected < 4.5.5_06-22.11.2fixed 4.5.5_06-22.11.2
The xhci_kick_epctx function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (infinite loop and QEMU process crash) via vectors related to control transfer descriptor sequence.
CVE-2016-9922MedMar 27, 2017
affected < 4.5.5_06-22.11.2fixed 4.5.5_06-22.11.2
The cirrus_do_copy function in hw/display/cirrus_vga.c in QEMU (aka Quick Emulator), when cirrus graphics mode is VGA, allows local guest OS privileged users to cause a denial of service (divide-by-zero error and QEMU process crash) via vectors involving blit pitch values.
CVE-2017-5856MedMar 16, 2017
affected < 4.5.5_06-22.11.2fixed 4.5.5_06-22.11.2
Memory leak in the megasas_handle_dcmd function in hw/scsi/megasas.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption) via MegaRAID Firmware Interface (MFI) commands with the sglist size set to a value over

Page 1 of 7