Showing 1 - 4 of 4

CVE-2021-4206

Status Candidate

Overview

A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursor_alloc() function can lead to the allocation of a small cursor object followed by a subsequent heap-based buffer overflow. This flaw allows a malicious privileged guest user to crash the QEMU process on the host or potentially execute arbitrary code within the context of the QEMU process.

Related Files

Red Hat Security Advisory 2022-5821-01: Posted Aug 4, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-5821-01 - Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems. Issues addressed include buffer overflow, integer overflow, and memory leak vulnerabilities.; tags | advisory, overflow, kernel, vulnerability, memory leak; systems | linux, redhat; advisories | CVE-2021-4206, CVE-2021-4207, CVE-2022-26353, CVE-2022-26354; SHA-256 | b0c9666aad6ba1beeca61ef826a8716bb5430800c2fc2a1e86aa57ed09be8138; Download | Favorite | View

Red Hat Security Advisory 2022-5002-01: Posted Jun 19, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-5002-01 - The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include buffer overflow, integer overflow, and memory leak vulnerabilities.; tags | advisory, overflow, vulnerability, memory leak; systems | linux, redhat; advisories | CVE-2021-4206, CVE-2021-4207, CVE-2022-26353, CVE-2022-26354; SHA-256 | 2983ba7cf11771cc4240c259323e46ae436b2ab42afcb9b2c8ea0d827283614b; Download | Favorite | View

Debian Security Advisory 5133-1: Posted May 28, 2022; Authored by Debian | Site debian.org; Debian Linux Security Advisory 5133-1 - Multiple security issues were discovered in QEMU, a fast processor emulator, which could result in denial of service or the execution of arbitrary code.; tags | advisory, denial of service, arbitrary; systems | linux, debian; advisories | CVE-2021-4206, CVE-2021-4207, CVE-2022-0358, CVE-2022-26353, CVE-2022-26354; SHA-256 | 57990d647a23586c852204bc219b23e57c397992ca00db3c856fe2e4844ce6d4; Download | Favorite | View

SAP Knowledge Warehouse 7.50 / 7.40 / 7.31 / 7.30 Cross Site Scripting: Posted Mar 21, 2022; Authored by Julien Ahrens | Site rcesecurity.com; SAP Knowledge Warehouse versions 7.30, 7.31, 7.40, and 7.50 suffer from a cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2021-42063; SHA-256 | 3cdb75beff9ad13b8fd31c0196339aaa4bd2eba05bc62d3ddf8e67c54c8cf3a8; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 232 files
Ubuntu 59 files
Debian 27 files
Valentin Lobstein 11 files
LiquidWorm 11 files
nu11secur1ty 9 files
Apple 6 files
Milad Karimi 5 files
Google Security Research 5 files
Yevhenii Butenko 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,022)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,318)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,567)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,456)
UNIX (9,394)
UnixWare (187)
Windows (6,650)
Other

CVE-2021-4206

Overview

Related Files

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems