| Max CVSS | 7.5 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-17963 | 7.5 |
qemu_deliver_packet_iov in net/net.c in Qemu accepts packet sizes greater than INT_MAX, which allows attackers to cause a denial of service or possibly have unspecified other impact.
|
04-08-2021 - 17:14 | 09-10-2018 - 22:29 | |
| CVE-2018-15746 | 2.1 |
qemu-seccomp.c in QEMU might allow local OS guest users to cause a denial of service (guest crash) by leveraging mishandling of the seccomp policy for threads other than the main thread.
|
10-09-2020 - 17:12 | 29-08-2018 - 19:29 | |
| CVE-2018-17958 | 5.0 |
Qemu has a Buffer Overflow in rtl8139_do_receive in hw/net/rtl8139.c because an incorrect integer data type is used.
|
10-09-2020 - 17:11 | 09-10-2018 - 22:29 | |
| CVE-2019-9824 | 2.1 |
tcp_emu in slirp/tcp_subr.c (aka slirp/src/tcp_subr.c) in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to Information disclosure.
|
24-08-2020 - 17:37 | 03-06-2019 - 21:29 | |
| CVE-2019-6778 | 4.6 |
In QEMU 3.0.0, tcp_emu in slirp/tcp_subr.c has a heap-based buffer overflow.
|
24-08-2020 - 17:37 | 21-03-2019 - 16:01 | |
| CVE-2019-6501 | 2.1 |
In QEMU 3.1, scsi_handle_inquiry_reply in hw/scsi/scsi-generic.c allows out-of-bounds write and read operations.
|
06-08-2019 - 17:15 | 21-03-2019 - 16:01 |