Search CVE reports

351 – 360 of 475 results

Detailed view

Sort by:

CVE-2015-8743

Medium priority

Some fixes available 3 of 4

QEMU (aka Quick Emulator) built with the NE2000 device emulation support is vulnerable to an OOB r/w access issue. It could occur while performing 'ioport' r/w operations. A privileged (CAP_SYS_RAWIO) user/process could use this...

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu	—	—	—	—
qemu-kvm	—	—	—	—

CVE-2015-8666

Medium priority

Some fixes available 2 of 3

Heap-based buffer overflow in QEMU, when built with the Q35-chipset-based PC system emulator.

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu	—	—	—	—
qemu-kvm	—	—	—	—

CVE-2015-8613

Medium priority

Some fixes available 2 of 3

Stack-based buffer overflow in the megasas_ctrl_get_info function in QEMU, when built with SCSI MegaRAID SAS HBA emulation support, allows local guest users to cause a denial of service (QEMU instance crash) via a crafted...

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu	—	—	—	—
qemu-kvm	—	—	—	—

CVE-2015-8619

Low priority

Some fixes available 2 of 3

The Human Monitor Interface support in QEMU allows remote attackers to cause a denial of service (out-of-bounds write and application crash).

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu	—	—	—	—
qemu-kvm	—	—	—	—

CVE-2015-8550

Medium priority

Some fixes available 37 of 61

Xen, when used on a system providing PV backends, allows local guest OS administrators to cause a denial of service (host OS crash) or gain privileges by writing to memory shared between the frontend and backend, aka a double...

108 affected packages

linux, linux-armadaxp, linux-aws, linux-flo, linux-gke...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux	Not affected	Not affected	Not affected	Not affected
linux-armadaxp	—	—	—	—
linux-aws	Not affected	Not affected	Not affected	Not affected
linux-flo	—	—	—	—
linux-gke	Not affected	Not affected	Ignored	Not in release
linux-goldfish	—	—	—	—
linux-grouper	—	—	—	—
linux-hwe	Not in release	Not in release	Not in release	Ignored
linux-hwe-edge	Not in release	Not in release	Not in release	Ignored
linux-linaro-omap	—	—	—	—
linux-linaro-shared	—	—	—	—
linux-linaro-vexpress	—	—	—	—
linux-lts-quantal	—	—	—	—
linux-lts-raring	—	—	—	—
linux-lts-saucy	—	—	—	—
linux-lts-trusty	—	—	—	—
linux-lts-utopic	—	—	—	—
linux-lts-vivid	—	—	—	—
linux-lts-wily	—	—	—	—
linux-lts-xenial	Not in release	Not in release	Not in release	Not in release
linux-maguro	—	—	—	—
linux-mako	—	—	—	—
linux-manta	—	—	—	—
linux-qcm-msm	—	—	—	—
linux-raspi2	Not in release	Not in release	Ignored	Ignored
linux-snapdragon	Not in release	Not in release	Not in release	Ignored
linux-ti-omap4	—	—	—	—
qemu	Fixed	Fixed	Fixed	Fixed
qemu-kvm	—	—	—	—
xen	Fixed	Fixed	Fixed	Fixed
linux-hwe-5.4	Not in release	Not in release	Not in release	Not affected
linux-hwe-5.15	Not in release	Not in release	Not affected	Not in release
linux-hwe-6.8	Not in release	Not affected	Not in release	Not in release
linux-hwe-6.11	Ignored	Not in release	Not in release	Not in release
linux-hwe-6.14	Not affected	Not in release	Not in release	Not in release
linux-kvm	Not in release	Not affected	Not affected	Not affected
linux-aws-5.4	Not in release	Not in release	Not in release	Not affected
linux-aws-5.15	Not in release	Not in release	Not affected	Not in release
linux-aws-6.8	Not in release	Not affected	Not in release	Not in release
linux-aws-6.14	Not affected	Not in release	Not in release	Not in release
linux-aws-hwe	Not in release	Not in release	Not in release	Not in release
linux-azure	Not affected	Not affected	Not affected	Ignored
linux-azure-4.15	Not in release	Not in release	Not in release	Not affected
linux-azure-5.4	Not in release	Not in release	Not in release	Not affected
linux-azure-5.15	Not in release	Not in release	Not affected	Not in release
linux-azure-6.8	Not in release	Not affected	Not in release	Not in release
linux-azure-6.11	Ignored	Not in release	Not in release	Not in release
linux-azure-fde	Not affected	Not affected	Ignored	Not in release
linux-azure-fde-5.15	Not in release	Not in release	Vulnerable	Not in release
linux-azure-nvidia	Not affected	Not in release	Not in release	Not in release
linux-bluefield	Not in release	Not in release	Not affected	Not in release
linux-fips	Not affected	Not affected	Not affected	Not affected
linux-aws-fips	Not affected	Not affected	Not affected	Not affected
linux-azure-fips	Not affected	Not affected	Not affected	Not affected
linux-gcp-fips	Not affected	Not affected	Not affected	Not affected
linux-gcp	Not affected	Not affected	Not affected	Ignored
linux-gcp-4.15	Not in release	Not in release	Not in release	Not affected
linux-gcp-5.4	Not in release	Not in release	Not in release	Not affected
linux-gcp-5.15	Not in release	Not in release	Not affected	Not in release
linux-gcp-6.8	Not in release	Not affected	Not in release	Not in release
linux-gcp-6.11	Ignored	Not in release	Not in release	Not in release
linux-gcp-6.14	Not affected	Not in release	Not in release	Not in release
linux-gkeop	Not affected	Not affected	Ignored	Not in release
linux-ibm	Not affected	Not affected	Not affected	Not in release
linux-ibm-5.4	Not in release	Not in release	Not in release	Not affected
linux-ibm-5.15	Not in release	Not in release	Not affected	Not in release
linux-ibm-6.8	Not in release	Not affected	Not in release	Not in release
linux-intel	Not affected	Not in release	Not in release	Not in release
linux-intel-iotg	Not in release	Not affected	Not in release	Not in release
linux-intel-iotg-5.15	Not in release	Not in release	Not affected	Not in release
linux-iot	Not in release	Not in release	Not affected	Not in release
linux-intel-iot-realtime	Not in release	Not affected	Not in release	Not in release
linux-lowlatency	Not affected	Not affected	Not in release	Not in release
linux-lowlatency-hwe-5.15	Not in release	Not in release	Not affected	Not in release
linux-lowlatency-hwe-6.8	Not in release	Not affected	Not in release	Not in release
linux-lowlatency-hwe-6.11	Ignored	Not in release	Not in release	Not in release
linux-nvidia	Not affected	Not affected	Not in release	Not in release
linux-nvidia-6.8	Not in release	Not affected	Not in release	Not in release
linux-nvidia-lowlatency	Not affected	Not in release	Not in release	Not in release
linux-nvidia-tegra	Not affected	Not affected	Not in release	Not in release
linux-nvidia-tegra-5.15	Not in release	Not in release	Not affected	Not in release
linux-nvidia-tegra-igx	Not in release	Not affected	Not in release	Not in release
linux-oracle	Not affected	Not affected	Not affected	Not affected
linux-oracle-5.4	Not in release	Not in release	Not in release	Not affected
linux-oracle-5.15	Not in release	Not in release	Not affected	Not in release
linux-oracle-6.8	Not in release	Not affected	Not in release	Not in release
linux-oracle-6.14	Not affected	Not in release	Not in release	Not in release
linux-oem-6.8	Not affected	Not in release	Not in release	Not in release
linux-oem-6.11	Not affected	Not in release	Not in release	Not in release
linux-oem-6.14	Not affected	Not in release	Not in release	Not in release
linux-raspi	Not affected	Not affected	Not affected	Not in release
linux-raspi-5.4	Not in release	Not in release	Not in release	Not affected
linux-raspi-realtime	Not affected	Not in release	Not in release	Not in release
linux-realtime	Not affected	Not affected	Not in release	Not in release
linux-riscv	Ignored	Ignored	Ignored	Not in release
linux-riscv-5.15	Not in release	Not in release	Not affected	Not in release
linux-riscv-6.8	Not in release	Not affected	Not in release	Not in release
linux-riscv-6.14	Not affected	Not in release	Not in release	Not in release
linux-xilinx-zynqmp	Not in release	Not affected	Not affected	Not in release
linux-nvidia-6.11	Not affected	Not in release	Not in release	Not in release
linux-realtime-6.14	Not affected	Not in release	Not in release	Not in release
linux-realtime-6.8	Not in release	Not affected	Not in release	Not in release
linux-azure-6.14	Not affected	Not in release	Not in release	Not in release
linux-azure-fde-6.14	Not affected	Not in release	Not in release	Not in release
linux-azure-nvidia-6.14	Not affected	Not in release	Not in release	Not in release
linux-xilinx	Not affected	Not in release	Not in release	Not in release
linux-oem-6.17	Not affected	Not in release	Not in release	Not in release
linux-azure-fde-6.8	Not in release	Not affected	Not in release	Not in release

CVE-2015-8568

Medium priority

Some fixes available 2 of 3

Memory leak in QEMU, when built with a VMWARE VMXNET3 paravirtual NIC emulator support, allows local guest users to cause a denial of service (host memory consumption) by trying to activate the vmxnet3 device repeatedly.

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu	—	—	—	—
qemu-kvm	—	—	—	—

CVE-2015-8567

Medium priority

Some fixes available 2 of 3

Memory leak in net/vmxnet3.c in QEMU allows remote attackers to cause a denial of service (memory consumption).

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu	—	—	—	—
qemu-kvm	—	—	—	—

CVE-2015-8558

Medium priority

Some fixes available 3 of 4

The ehci_process_itd function in hw/usb/hcd-ehci.c in QEMU allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) via a circular isochronous transfer descriptor (iTD) list.

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu	—	—	—	—
qemu-kvm	—	—	—	—

CVE-2015-7549

Medium priority

Some fixes available 2 of 3

The MSI-X MMIO support in hw/pci/msix.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (NULL pointer dereference and QEMU process crash) by leveraging failure to define the .write method.

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu	—	—	—	—
qemu-kvm	—	—	—	—

CVE-2015-8504

Medium priority

Some fixes available 3 of 4

Qemu, when built with VNC display driver support, allows remote attackers to cause a denial of service (arithmetic exception and application crash) via crafted SetPixelFormat messages from a client.

2 affected packages

qemu, qemu-kvm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
qemu	—	—	—	—
qemu-kvm	—	—	—	—

Export to JSON

Results by page: