Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-3573-1:12FF0
HistoryMay 09, 2016 - 8:28 p.m.

[SECURITY] [DSA 3573-1] qemu security update

2016-05-0920:28:27
lists.debian.org
38

EPSS

0.002

Percentile

59.8%

JSON

Debian Security Advisory DSA-3573-1 [email protected]
https://www.debian.org/security/ Salvatore Bonaccorso
May 09, 2016 https://www.debian.org/security/faq

Package : qemu
CVE ID : CVE-2016-3710 CVE-2016-3712
Debian Bug : 823830

Several vulnerabilities were discovered in qemu, a fast processor
emulator.

CVE-2016-3710

Wei Xiao and Qinghao Tang of 360.cn Inc discovered an out-of-bounds
read and write flaw in the QEMU VGA module. A privileged guest user
could use this flaw to execute arbitrary code on the host with the
privileges of the hosting QEMU process.

CVE-2016-3712

Zuozhi Fzz of Alibaba Inc discovered potential integer overflow
or out-of-bounds read access issues in the QEMU VGA module. A
privileged guest user could use this flaw to mount a denial of
service (QEMU process crash).

For the stable distribution (jessie), these problems have been fixed in
version 1:2.1+dfsg-12+deb8u6.

We recommend that you upgrade your qemu packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian8kfreebsd-amd64qemu-utils< 2.1+dfsg-12+deb8u6qemu-utils_2.1+dfsg-12+deb8u6_kfreebsd-amd64.deb
Debian7i386libxen-4.1< 4.1.6.lts1-1libxen-4.1_4.1.6.lts1-1_i386.deb
Debian8mipselqemu-user-static< 2.1+dfsg-12+deb8u6qemu-user-static_2.1+dfsg-12+deb8u6_mipsel.deb
Debian8ppc64elqemu-user-binfmt< 2.1+dfsg-12+deb8u6qemu-user-binfmt_2.1+dfsg-12+deb8u6_ppc64el.deb
Debian7armelqemu< 1.1.2+dfsg-6a+deb7u13qemu_1.1.2+dfsg-6a+deb7u13_armel.deb
Debian8powerpcqemu-system-misc< 2.1+dfsg-12+deb8u6qemu-system-misc_2.1+dfsg-12+deb8u6_powerpc.deb
Debian8i386qemu-utils< 2.1+dfsg-12+deb8u6qemu-utils_2.1+dfsg-12+deb8u6_i386.deb
Debian8kfreebsd-i386qemu-guest-agent< 2.1+dfsg-12+deb8u6qemu-guest-agent_2.1+dfsg-12+deb8u6_kfreebsd-i386.deb
Debian8armelqemu-system< 2.1+dfsg-12+deb8u6qemu-system_2.1+dfsg-12+deb8u6_armel.deb
Debian8armhfqemu-utils< 2.1+dfsg-12+deb8u6qemu-utils_2.1+dfsg-12+deb8u6_armhf.deb
Rows per page:
1-10 of 2171

Related

debian 4
openvas 34
nessus 60
fedora 5
xen 1
osv 6
freebsd 1
oraclelinux 7
veracode 2
centos 5
debiancve 2
redhat 12
prion 2
cve 2
ubuntucve 2
nvd 2
cvelist 2
redhatcve 1
archlinux 2
ubuntu 1
ibm 2
mageia 2
suse 12
debian
debian
[SECURITY] [DSA 3573-1] qemu security update
2016-05-09 20:28:27
[SECURITY] [DLA 539-1] qemu-kvm security update
2016-07-01 08:46:52
[SECURITY] [DLA 540-1] qemu security update
2016-07-01 09:48:47
openvas
openvas
Debian: Security Advisory (DLA-540-1)
2023-03-08 00:00:00
Debian Security Advisory DSA 3573-1 (qemu - security update)
2016-05-09 00:00:00
Fedora Update for xen FEDORA-2016-a21b2cb7a0
2016-06-08 00:00:00
nessus
nessus
FreeBSD : xen-tools -- QEMU: Banked access to VGA memory (VBE) uses inconsistent bounds checks (e6ce6f50-4212-11e6-942d-bc5ff45d0f28)
2016-07-05 00:00:00
Debian DSA-3573-1 : qemu - security update
2016-05-11 00:00:00
Debian DLA-540-1 : qemu security update
2016-07-05 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: xen-4.6.1-8.fc24
2016-05-16 16:33:45
[SECURITY] Fedora 23 Update: xen-4.5.3-3.fc23
2016-05-12 07:32:01
[SECURITY] Fedora 22 Update: xen-4.5.3-5.fc22
2016-05-28 23:24:56
xen
xen
QEMU: Banked access to VGA memory (VBE) uses inconsistent bounds checks
2016-05-09 11:48:00
osv
osv
qemu - security update
2016-05-09 00:00:00
qemu-kvm - security update
2016-07-01 00:00:00
qemu - security update
2016-07-01 00:00:00
freebsd
freebsd
xen-tools -- QEMU: Banked access to VGA memory (VBE) uses inconsistent bounds checks
2016-05-09 00:00:00
oraclelinux
oraclelinux
qemu-kvm security update
2016-08-09 00:00:00
qemu-kvm security update
2016-05-09 00:00:00
qemu-kvm security, bug fix, and enhancement update
2016-11-09 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-01-15 09:11:18
Denial Of Service (DoS)
2019-01-15 09:16:25
centos
centos
qemu security update
2016-05-16 10:25:54
libcacard, qemu security update
2016-05-09 16:33:09
qemu security update
2017-03-24 15:42:25
debiancve
debiancve
CVE-2016-3710
2016-05-11 21:59:01
CVE-2016-3712
2016-05-11 21:59:02
redhat
redhat
(RHSA-2016:0725) Important: qemu-kvm-rhev security update
2016-05-09 14:56:49
(RHSA-2016:1002) Important: qemu-kvm-rhev security update
2016-05-10 04:47:30
(RHSA-2016:0999) Important: qemu-kvm-rhev security update
2016-05-10 04:42:19
prion
prion
Design/Logic Flaw
2016-05-11 21:59:00
Integer overflow
2016-05-11 21:59:00
cve
cve
CVE-2016-3710
2016-05-11 21:59:01
CVE-2016-3712
2016-05-11 21:59:02
ubuntucve
ubuntucve
CVE-2016-3712
2016-05-09 00:00:00
CVE-2016-3710
2016-05-09 00:00:00
nvd
nvd
CVE-2016-3712
2016-05-11 21:59:02
CVE-2016-3710
2016-05-11 21:59:01
cvelist
cvelist
CVE-2016-3710
2016-05-11 21:00:00
CVE-2016-3712
2016-05-11 21:00:00
redhatcve
redhatcve
CVE-2016-3710
2016-05-09 12:48:19
archlinux
archlinux
qemu: multiple issues
2016-06-08 00:00:00
qemu-arch-extra: multiple issues
2016-06-08 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2016-05-12 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in Qemu-kvm affect IBM SmartCloud Entry
2020-07-19 00:49:12
Security Bulletin: Multiple vulnerabilities in qemu affect PowerKVM
2018-06-18 01:33:29
mageia
mageia
Updated qemu packages fix security vulnerabilities
2016-05-18 23:14:22
Updated xen packages fix security vulnerability
2017-01-09 23:29:57
suse
suse
Security update for xen (important)
2016-11-04 15:11:21
Security update for kvm (important)
2016-07-11 16:39:09
Security update for qemu (important)
2016-06-29 11:07:43

EPSS

0.002

Percentile

59.8%

JSON
Related for DEBIAN:DSA-3573-1:12FF0
debian4openvas34nessus60fedora5xen1osv6freebsd1oraclelinux7veracode2centos5debiancve2redhat12prion2cve2ubuntucve2nvd2cvelist2redhatcve1archlinux2ubuntu1ibm2mageia2suse12