| Max CVSS | 4.4 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-1983 | 2.1 |
A use after free vulnerability in ip_reass() in ip_input.c of libslirp 4.2.0 and prior releases allows crafted packets to cause a denial of service.
|
27-01-2023 - 18:40 | 22-04-2020 - 20:15 | |
| CVE-2019-20382 | 2.7 |
QEMU 4.1.0 has a memory leak in zrle_compress_data in ui/vnc-enc-zrle.c during a VNC disconnect operation because libz is misused, resulting in a situation where memory allocated in deflateInit2 is not freed in deflateEnd.
|
24-01-2023 - 02:11 | 05-03-2020 - 19:15 | |
| CVE-2019-15034 | 4.4 |
hw/display/bochs-display.c in QEMU 4.0.0 does not ensure a sufficient PCI config space allocation, leading to a buffer overflow involving the PCIe extended config space.
|
28-05-2020 - 23:15 | 10-03-2020 - 18:15 | |
| CVE-2020-11869 | 2.1 |
An integer overflow was found in QEMU 4.0.1 through 4.2.0 in the way it implemented ATI VGA emulation. This flaw occurs in the ati_2d_blt() routine in hw/display/ati-2d.c while handling MMIO write operations through the ati_mm_write() callback. A mal
|
28-05-2020 - 23:15 | 27-04-2020 - 19:15 |