Gentoo Linux Security Advisory 201210-4 - Multiple vulnerabilities were found in qemu-kvm, allowing attackers to execute arbitrary code. Versions less than 1.1.1-r1 are affected.
06a3dcc607829516f85c54a5f5e6c417bc1c799c5779cfc55ea88d07821757e1
Ubuntu Security Notice 1145-1 - It was discovered that QEMU did not properly perform validation of I/O operations from the guest which could lead to heap corruption. An attacker could exploit this to cause a denial of service of the guest or possibly execute code with the privileges of the user invoking the program. Nelson Elhage discovered that QEMU did not properly handle memory when removing ISA devices. An attacker could exploit this to cause a denial of service of the guest or possibly execute code with the privileges of the user invoking the program. Various other issues were also addressed.
29bcfefee7ae3f99088f1c110581a3f5650de101fcda3cf0f732eb5447e7392c
Debian Linux Security Advisory 2230-1 - Two vulnerabilities have been discovered in KVM, a solution for full virtualization on x86 hardware.
61ae493a42caf194662c3546704f4d2f3505ccec3866ac23397b6dc45d9e1095