Vulnerability & Exploit Database

Displaying entries 1 - 10 of 13 in total

Results for: CVE-2014-8106 Back to search

RHSA-2015:0624: qemu-kvm-rhev security, bug fix, and enhancement update Vulnerability

  • Severity: 8
  • Published: December 12, 2014

Updated qemu-kvm-rhev packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Virtualization Hypervisor 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed...

RHSA-2015:0349: qemu-kvm security, bug fix, and enhancement update Vulnerability

  • Severity: 8
  • Published: December 12, 2014

KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linuxon AMD64 and Intel 64 systems. The qemu-kvm packages provide the user-spacecomponent for running virtual machines using KVM.It was found that the Cirrus blit region checks were insufficient. A privilegedguest user could use this flaw to write outside of VRAM-al...

USN-2439-1: QEMU vulnerabilities Vulnerability

  • Severity: 8
  • Published: December 08, 2014

The host_from_stream_offset function in arch_init.c in QEMU, when loading RAM during migration, allows remote attackers to execute arbitrary code via a crafted (1) offset or (2) length value in savevm data.

SUSE: CVE-2014-8106: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: December 08, 2014

Heap-based buffer overflow in the Cirrus VGA emulator (hw/display/cirrus_vga.c) in QEMU before 2.2.0 allows local guest users to execute arbitrary code via vectors related to blit regions. NOTE: this vulnerability exists because an incomplete fix for CVE-2007-1320.

RHSA-2015:0867: qemu-kvm security and bug fix update Vulnerability

  • Severity: 5
  • Published: December 08, 2014

KVM (Kernel-based Virtual Machine) is a full virtualization solution forLinux on AMD64 and Intel 64 systems. The qemu-kvm package provides theuser-space component for running virtual machines using KVM.It was found that the Cirrus blit region checks were insufficient. Aprivileged guest user could use this flaw to write outside of VRAM-al...

ELSA-2015-0867 Important: Oracle Linux qemu-kvm security and bug fix update Vulnerability

  • Severity: 5
  • Published: December 08, 2014

Heap-based buffer overflow in the Cirrus VGA emulator (hw/display/cirrus_vga.c) in QEMU before 2.2.0 allows local guest users to execute arbitrary code via vectors related to blit regions. NOTE: this vulnerability exists because an incomplete fix for CVE-2007-1320.

Gentoo Linux: CVE-2014-8106: QEMU: Multiple Vulnerabilities Vulnerability

  • Severity: 5
  • Published: December 08, 2014

Heap-based buffer overflow in the Cirrus VGA emulator (hw/display/cirrus_vga.c) in QEMU before 2.2.0 allows local guest users to execute arbitrary code via vectors related to blit regions. NOTE: this vulnerability exists because an incomplete fix for CVE-2007-1320.

F5 Networks: K63519101 (CVE-2014-8106): Multiple QEMU vulnerabilities Vulnerability

  • Severity: 5
  • Published: December 08, 2014

Heap-based buffer overflow in the Cirrus VGA emulator (hw/display/cirrus_vga.c) in QEMU before 2.2.0 allows local guest users to execute arbitrary code via vectors related to blit regions. NOTE: this vulnerability exists because an incomplete fix for CVE-2007-1320.

Cent OS: CVE-2014-8106: CESA-2015:0867 (qemu-kvm) Vulnerability

  • Severity: 5
  • Published: December 08, 2014

Heap-based buffer overflow in the Cirrus VGA emulator (hw/display/cirrus_vga.c) in QEMU before 2.2.0 allows local guest users to execute arbitrary code via vectors related to blit regions. NOTE: this vulnerability exists because an incomplete fix for CVE-2007-1320.