Vulnerability & Exploit Database

Displaying all 7 entries

Results for: CVE-2016-9845 Back to search

Debian: CVE-2016-9602: qemu-kvm - security update Vulnerability

  • Severity: 9
  • Published: April 20, 2017

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From USN-3261-1:

Zhenhao Hong discovered that QEMU incorrectly handled the Virtio GPU device. An attacker inside the guest could use this issue to cause QEMU t...

Ubuntu: USN-3261-1 (CVE-2016-9845): QEMU vulnerabilities Vulnerability

  • Severity: 2
  • Published: December 29, 2016

QEMU (aka Quick Emulator) built with the Virtio GPU Device emulator support is vulnerable to an information leakage issue. It could occur while processing 'VIRTIO_GPU_CMD_GET_CAPSET_INFO' command. A guest user/process could use this flaw to leak contents of the host memory bytes.

SUSE: CVE-2016-9845: SUSE Linux Security Advisory Vulnerability

  • Severity: 2
  • Published: December 29, 2016

QEMU (aka Quick Emulator) built with the Virtio GPU Device emulator support is vulnerable to an information leakage issue. It could occur while processing 'VIRTIO_GPU_CMD_GET_CAPSET_INFO' command. A guest user/process could use this flaw to leak contents of the host memory bytes.

Gentoo Linux: CVE-2016-9845: QEMU: Multiple vulnerabilities Vulnerability

  • Severity: 2
  • Published: December 29, 2016

QEMU (aka Quick Emulator) built with the Virtio GPU Device emulator support is vulnerable to an information leakage issue. It could occur while processing 'VIRTIO_GPU_CMD_GET_CAPSET_INFO' command. A guest user/process could use this flaw to leak contents of the host memory bytes.

SUSE: CVE-2014-9845: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: July 11, 2016

The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service (crash) via a corrupted dib file.