Showing 1 - 8 of 8

CVE-2019-9824

Status Candidate

Overview

tcp_emu in slirp/tcp_subr.c (aka slirp/src/tcp_subr.c) in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to Information disclosure.

Red Hat Security Advisory 2019-3345-01: Posted Nov 6, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-3345-01 - Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems. Issues addressed include buffer overflow, information leakage, and null pointer vulnerabilities.; tags | advisory, overflow, kernel, vulnerability; systems | linux, redhat; advisories | CVE-2019-12155, CVE-2019-9755, CVE-2019-9824; SHA-256 | a68c271acf012aa412851518424d39845ebb6905d54892e0cd915ea2319a0e7d; Download | Favorite | View

Red Hat Security Advisory 2019-2553-01: Posted Aug 22, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-2553-01 - KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include CPU related, buffer overflow, and information leakage vulnerabilities.; tags | advisory, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2018-17958, CVE-2018-17963, CVE-2018-20815, CVE-2019-11091, CVE-2019-6501, CVE-2019-9824; SHA-256 | 7acc2576aa8fb450953d3b4fc4a43fe8b7b8a50f4b5d7ca1b06988e063eb8ef2; Download | Favorite | View

Red Hat Security Advisory 2019-2425-01: Posted Aug 9, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-2425-01 - KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include buffer overflow and information leakage vulnerabilities.; tags | advisory, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2018-15746, CVE-2018-17958, CVE-2018-17963, CVE-2019-6501, CVE-2019-6778, CVE-2019-9824; SHA-256 | d8a0c17f6966983bd5d0c20390af20e3c934d76a58063bbc17816213c2604520; Download | Favorite | View

Red Hat Security Advisory 2019-2078-01: Posted Aug 6, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-2078-01 - Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Issues addressed include an information leakage vulnerability.; tags | advisory, kernel; systems | linux, redhat; advisories | CVE-2019-9824; SHA-256 | c01465c4d0d0cdac17f46a2c48177349271745bf0341c5731b3d68c47b17ebff; Download | Favorite | View

Red Hat Security Advisory 2019-1650-01: Posted Jul 2, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-1650-01 - Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Issues addressed include an information leakage vulnerability.; tags | advisory, kernel; systems | linux, redhat; advisories | CVE-2019-9824; SHA-256 | 9fd01a21d9cc9f0f48da81454a7cb89a65ec8eadb3ed719b009d5d117be293da; Download | Favorite | View

Debian Security Advisory 4454-1: Posted May 31, 2019; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4454-1 - Multiple security issues were discovered in QEMU, a fast processor emulator, which could result in denial of service, the execution of arbitrary code or information disclosure.; tags | advisory, denial of service, arbitrary, info disclosure; systems | linux, debian; advisories | CVE-2018-11806, CVE-2018-12617, CVE-2018-16872, CVE-2018-17958, CVE-2018-18849, CVE-2018-18954, CVE-2018-19364, CVE-2018-19489, CVE-2019-12155, CVE-2019-3812, CVE-2019-6778, CVE-2019-9824; SHA-256 | cba000ba6722bbd7ea6515d914172a949427ee73bb4a672c4b7065b7f6df2144; Download | Favorite | View

Ubuntu Security Notice USN-3978-1: Posted May 15, 2019; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3978-1 - Ke Sun, Henrique Kawakami, Kekai Hu, Rodrigo Branco, Giorgi Maisuradze, Dan Horea Lutas, Andrei Lutas, Volodymyr Pikhur, Stephan van Schaik, Alyssa Milburn, Sebastian Österlund, Pietro Frigo, Kaveh Razavi, Herbert Bos, Cristiano Giuffrida, Moritz Lipp, Michael Schwarz, and Daniel Gruss discovered that memory previously stored in microarchitectural fill buffers of an Intel CPU core may be exposed to a malicious process that is executing on the same CPU core. A local attacker could use this to expose sensitive information. Various other issues were also addressed.; tags | advisory, local; systems | linux, ubuntu; advisories | CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2018-20815, CVE-2019-11091, CVE-2019-5008, CVE-2019-9824; SHA-256 | 1e053abcf9a91201dd223d401342aec68f1c14970691a19c251183599832f842; Download | Favorite | View

Gentoo Linux Security Advisory 201904-25: Posted Apr 25, 2019; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201904-25 - Multiple vulnerabilities have been found in QEMU, the worst of which could result in the arbitrary execution of code. Versions less than 3.1.0-r4 are affected.; tags | advisory, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2018-20815, CVE-2019-9824; SHA-256 | b8ef2d5b31853634154b8d8df5f413eb259a7fcf09e7c186b608a5ad6e3aad61; Download | Favorite | View

Page 1 of 1 Back 1 Next