Several security issues were fixed in QEMU ...
Synopsis
Moderate: qemu-kvm security, bug fix, and enhancement update
Type/Severity
Security Advisory: Moderate
Topic
An update for qemu-kvm is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring ...
Synopsis
Moderate: qemu-kvm security and bug fix update
Type/Severity
Security Advisory: Moderate
Topic
An update for qemu-kvm is now available for Red Hat Enterprise Linux 6Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) ...
Several vulnerabilities were discovered in qemu, a fast processor
emulator
CVE-2016-3710
Wei Xiao and Qinghao Tang of 360cn Inc discovered an out-of-bounds
read and write flaw in the QEMU VGA module A privileged guest user
could use this flaw to execute arbitrary code on the host with the
privileges of the hosting QEMU process
...
Debian Bug report logs -
#815680
qemu: CVE-2016-2538: usb: integer overflow in remote NDIS control message handling
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Tue, 23 Feb 2016 16:54:02 UTC
Severit ...
Debian Bug report logs -
#813194
CVE-2016-2197: ide: ahci null pointer dereference when using FIS CLB engines
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Michael Tokarev <mjt@tlsmskru>
Date: Sat, 30 Jan 2016 11:30:01 UTC
Severity: important
T ...
Debian Bug report logs -
#821038
qemu: CVE-2016-4001: net: buffer overflow in stellaris_enet emulator
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Thu, 14 Apr 2016 21:18:05 UTC
Severity: important
T ...
Debian Bug report logs -
#815008
qemu: CVE-2016-2392: usb: null pointer dereference in remote NDIS control message handling
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Wed, 17 Feb 2016 16:42:01 UTC
...
Debian Bug report logs -
#817181
qemu: CVE-2016-2841: net: ne2000: infinite loop in ne2000_receive
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Tue, 8 Mar 2016 19:18:02 UTC
Severity: important
Tags ...
Debian Bug report logs -
#817183
qemu: CVE-2016-2858: rng-random: arbitrary stack based allocation leading to corruption
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Tue, 8 Mar 2016 19:21:02 UTC
Se ...
Debian Bug report logs -
#815009
qemu: CVE-2016-2391: usb: multiple eof_timers in ohci leads to null pointer dereference
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Wed, 17 Feb 2016 16:42:06 UTC
Se ...
Debian Bug report logs -
#822344
qemu: CVE-2016-4037: usb: Infinite loop vulnerability in usb_ehci using siTD process
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Sat, 23 Apr 2016 17:27:01 UTC
Sever ...
Debian Bug report logs -
#817182
qemu: CVE-2016-2857: net: out of bounds read in net_checksum_calculate
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Tue, 8 Mar 2016 19:18:06 UTC
Severity: important ...
Debian Bug report logs -
#813193
CVE-2016-2198: usb: ehci null pointer dereference in ehci_caps_write
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Michael Tokarev <mjt@tlsmskru>
Date: Sat, 30 Jan 2016 11:24:01 UTC
Severity: important
Tags: pat ...
Debian Bug report logs -
#823830
qemu: CVE-2016-3710 CVE-2016-3712
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Mon, 9 May 2016 12:27:02 UTC
Severity: grave
Tags: security, upstream
Found in versi ...
Debian Bug report logs -
#821062
qemu: CVE-2016-4020: i386: leakage of stack memory to guest in kvmvapicc
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Fri, 15 Apr 2016 04:57:01 UTC
Severity: import ...
Debian Bug report logs -
#825207
qemu: CVE-2016-4964: scsi: mptsas infinite loop in mptsas_fetch_requests
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Tue, 24 May 2016 14:42:01 UTC
Severity: importa ...
Debian Bug report logs -
#821061
qemu: CVE-2016-4002: net: buffer overflow in MIPSnet emulator
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Fri, 15 Apr 2016 04:12:02 UTC
Severity: important
Tags: pa ...
Debian Bug report logs -
#826151
qemu: CVE-2016-5126: block: iscsi: buffer overflow in iscsi_aio_ioctl
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Thu, 2 Jun 2016 18:45:02 UTC
Severity: important
...
Debian Bug report logs -
#825210
qemu: CVE-2016-4952: scsi: pvscsi: out-of-bounds access issue in pvsci_ring_init_msg/data routines
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Tue, 24 May 2016 15:00 ...
Debian Bug report logs -
#825616
qemu: CVE-2016-5107: scsi: megasas: out-of-bounds read in megasas_lookup_frame() function
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Sat, 28 May 2016 07:54:02 UTC
...
Debian Bug report logs -
#825614
qemu: CVE-2016-5105: scsi: megasas: stack information leakage while reading configuration
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Sat, 28 May 2016 07:51:02 UTC
...
Debian Bug report logs -
#827026
qemu: CVE-2016-5337: scsi: megasas: information leakage in megasas_ctrl_get_info
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Sat, 11 Jun 2016 10:15:01 UTC
Severity: ...
Debian Bug report logs -
#827024
qemu: CVE-2016-5338: scsi: esp: OOB r/w access while processing ESP_FIFO
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Sat, 11 Jun 2016 10:12:02 UTC
Severity: normal
...
Debian Bug report logs -
#824856
qemu: CVE-2016-4439 CVE-2016-4441
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Fri, 20 May 2016 13:21:07 UTC
Severity: important
Tags: patch, security, upstream
Fou ...
Debian Bug report logs -
#825615
qemu: CVE-2016-5106: scsi: megasas: out-of-bounds write while setting controller properties
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Sat, 28 May 2016 07:51:09 UTC ...
Description of Problem A number of security vulnerabilities have been identified in Citrix XenServer that may allow a malicious administrator of a guest VM (depending on configuration) or an attacker on the management network to compromise the host These vulnerabilities affect all currently supported versions of Citrix XenServer up to and includin ...