CVE search results

131 – 140 of 483 results

Detailed view

Sort by:

CVE-2020-15859

Medium priority

Some fixes available 4 of 5

QEMU 4.2.0 has a use-after-free in hw/net/e1000e_core.c because a guest OS user can trigger an e1000e packet with the data's address set to the e1000e's MMIO address.

2 affected packages

qemu-kvm, qemu

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu-kvm	Not in release	Not in release	Not in release	Not in release	Not in release
qemu	Not affected	Not affected	Not affected	Fixed	Fixed

CVE-2020-10756

Medium priority

Some fixes available 2 of 5

An out-of-bounds read vulnerability was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the icmp6_send_echoreply() routine while replying to an ICMP echo request, also known as ping. This...

4 affected packages

libslirp, qemu, qemu-kvm, slirp4netns

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libslirp	Not affected	Not affected	Not affected	Fixed	Not in release
qemu	Not affected	Not affected	Not affected	Not affected	Fixed
qemu-kvm	Not in release	Not in release	Not in release	Not in release	Not in release
slirp4netns	Not affected	Not affected	Not affected	Vulnerable	Not in release

CVE-2020-15469

Low priority

Some fixes available 14 of 17

In QEMU 4.2.0, a MemoryRegionOps object may lack read/write callback methods, leading to a NULL pointer dereference.

2 affected packages

qemu, qemu-kvm

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu	Fixed	Fixed	Fixed	Fixed	Fixed
qemu-kvm	Not in release	Not in release	Not in release	Not in release	Not in release

CVE-2020-14415

Low priority

Some fixes available 1 of 2

oss_write in audio/ossaudio.c in QEMU before 5.0.0 mishandles a buffer position.

2 affected packages

qemu, qemu-kvm

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu	—	—	—	Fixed	Not affected
qemu-kvm	—	—	—	Not in release	Not in release

CVE-2020-10761

Medium priority

Some fixes available 1 of 2

An assertion failure issue was found in the Network Block Device(NBD) Server in all QEMU versions before QEMU 5.0.1. This flaw occurs when an nbd-client sends a spec-compliant request that is near the boundary of maximum permitted...

2 affected packages

qemu, qemu-kvm

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu	—	—	—	Fixed	Not affected
qemu-kvm	—	—	—	Not in release	Not in release

CVE-2020-13800

Low priority

Some fixes available 1 of 2

ati-vga in hw/display/ati.c in QEMU 4.2.0 allows guest OS users to trigger infinite recursion via a crafted mm_index value during an ati_mm_read or ati_mm_write call.

2 affected packages

qemu, qemu-kvm

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu	—	—	—	Fixed	Not affected
qemu-kvm	—	—	—	Not in release	Not in release

CVE-2020-13791

Low priority

Vulnerable

hw/pci/pci.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access by providing an address near the end of the PCI configuration space.

2 affected packages

qemu-kvm, qemu

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu-kvm	Not in release	Not in release	Not in release	Not in release	Not in release
qemu	Vulnerable	Vulnerable	Vulnerable	Vulnerable	Not affected

CVE-2020-13765

Medium priority

Some fixes available 3 of 4

rom_copy() in hw/core/loader.c in QEMU 4.0 and 4.1.0 does not validate the relationship between two addresses, which allows attackers to trigger an invalid memory copy operation.

2 affected packages

qemu, qemu-kvm

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu	—	Not affected	Not affected	Not affected	Fixed
qemu-kvm	—	Not in release	Not in release	Not in release	Not in release

CVE-2020-13754

Medium priority

Some fixes available 4 of 5

hw/pci/msix.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access via a crafted address in an msi-x mmio operation.

2 affected packages

qemu, qemu-kvm

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu	—	—	—	Fixed	Fixed
qemu-kvm	—	—	—	Not in release	Not in release

CVE-2020-13659

Low priority

Some fixes available 4 of 5

address_space_map in exec.c in QEMU 4.2.0 can trigger a NULL pointer dereference related to BounceBuffer.

2 affected packages

qemu, qemu-kvm

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu	—	—	—	Fixed	Fixed
qemu-kvm	—	—	—	Not in release	Not in release

Export to JSON

Results by page:

Search CVE reports