| Max CVSS | 7.5 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-7840 | 7.5 |
The host_from_stream_offset function in arch_init.c in QEMU, when loading RAM during migration, allows remote attackers to execute arbitrary code via a crafted (1) offset or (2) length value in savevm data.
|
13-02-2023 - 00:42 | 12-12-2014 - 15:59 | |
| CVE-2014-7815 | 5.0 |
The set_pixel_format function in ui/vnc.c in QEMU allows remote attackers to cause a denial of service (crash) via a small bytes_per_pixel value.
|
13-02-2023 - 00:42 | 14-11-2014 - 15:59 | |
| CVE-2014-8106 | 4.6 |
Heap-based buffer overflow in the Cirrus VGA emulator (hw/display/cirrus_vga.c) in QEMU before 2.2.0 allows local guest users to execute arbitrary code via vectors related to blit regions. NOTE: this vulnerability exists because an incomplete fix for
|
13-02-2023 - 00:42 | 08-12-2014 - 16:59 | |
| CVE-2014-3640 | 2.1 |
The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of service (NULL pointer dereference) by sending a udp packet with a value of 0 in the source port and address, which triggers access of an uninitialized s
|
13-02-2023 - 00:41 | 07-11-2014 - 19:55 |