Huawei EulerOS Local Security Checks : Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2019-2227)

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.2.2019.2227
Categoría:	Huawei EulerOS Local Security Checks
Título:	Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2019-2227)
Resumen:	The remote host is missing an update for the Huawei EulerOS 'qemu-kvm' package(s) announced via the EulerOS-SA-2019-2227 advisory.
Descripción:	Summary: The remote host is missing an update for the Huawei EulerOS 'qemu-kvm' package(s) announced via the EulerOS-SA-2019-2227 advisory. Vulnerability Insight: In QEMU 3.0.0, tcp_emu in slirp/tcp_subr.c has a heap-based buffer overflow.(CVE-2019-6778) The MSI-X MMIO support in hw/pci/msix.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (NULL pointer dereference and QEMU process crash) by leveraging failure to define the .write method.(CVE-2015-7549) The ne2000_receive function in the NE2000 NIC emulation support (hw/net/ne2000.c) in QEMU before 2.5.1 allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) via crafted values for the PSTART and PSTOP registers, involving ring buffer control.(CVE-2016-2841) Memory leak in QEMU (aka Quick Emulator), when built with USB EHCI Emulation support, allows local guest OS privileged users to cause a denial of service (memory consumption) by repeatedly hot-unplugging the device.(CVE-2017-9374) Integer overflow in the macro ROUND_UP (n, d) in Quick Emulator (Qemu) allows a user to cause a denial of service (Qemu process crash).(CVE-2017-18043) Memory leak in the serial_exit_core function in hw/char/serial.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations.(CVE-2017-5579) The slirp_smb function in net/slirp.c in QEMU 2.3.0 and earlier creates temporary files with predictable names, which allows local users to cause a denial of service (instantiation failure) by creating /tmp/qemu-smb.- files before the program.(CVE-2015-4037) The mcf_fec_do_tx function in hw/net/mcf_fec.c in QEMU (aka Quick Emulator) does not properly limit the buffer descriptor count when transmitting packets, which allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) via vectors involving a buffer descriptor with a length of 0 and crafted values in bd.flags.(CVE-2016-7908) hw/net/vmxnet3.c in QEMU 2.0.0-rc0, 1.7.1, and earlier allows local guest users to cause a denial of service or possibly execute arbitrary code via vectors related to (1) RX or (2) TX queue numbers or (3) interrupt indices. NOTE: some of these details are obtained from third party information.(CVE-2013-4544) Multiple integer overflows in the USB Net device emulator (hw/usb/dev-network.c) in QEMU before 2.5.1 allow local guest OS administrators to cause a denial of service (QEMU process crash) or obtain sensitive host memory information via a remote NDIS control message packet that is mishandled in the (1) rndis_query_response, (2) rndis_set_response, or (3) usb_net_handle_dataout function.(CVE-2016-2538) Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is vulnerable to an integer overflow, which could lead to buffer overflow issue. It could occur when receiving packets over the network. A user inside guest could use this flaw to crash ... [Please see the references for more information on the vulnerabilities] Affected Software/OS: 'qemu-kvm' package(s) on Huawei EulerOS V2.0SP5. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-4526 http://lists.fedoraproject.org/pipermail/package-announce/2014-May/133345.html http://lists.gnu.org/archive/html/qemu-devel/2013-12/msg00394.html http://lists.nongnu.org/archive/html/qemu-stable/2014-07/msg00187.html Common Vulnerability Exposure (CVE) ID: CVE-2013-4530 Common Vulnerability Exposure (CVE) ID: CVE-2013-4539 Common Vulnerability Exposure (CVE) ID: CVE-2013-4540 SuSE Security Announcement: openSUSE-SU-2014:1279 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html SuSE Security Announcement: openSUSE-SU-2014:1281 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html Common Vulnerability Exposure (CVE) ID: CVE-2013-4544 http://thread.gmane.org/gmane.comp.emulators.qemu/265562 http://www.osvdb.org/106013 http://secunia.com/advisories/58191 http://ubuntu.com/usn/usn-2182-1 Common Vulnerability Exposure (CVE) ID: CVE-2015-4037 BugTraq ID: 74809 http://www.securityfocus.com/bid/74809 Debian Security Information: DSA-3284 (Google Search) http://www.debian.org/security/2015/dsa-3284 Debian Security Information: DSA-3285 (Google Search) http://www.debian.org/security/2015/dsa-3285 http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160414.html http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160058.html http://www.openwall.com/lists/oss-security/2015/05/13/7 http://www.openwall.com/lists/oss-security/2015/05/16/5 http://www.openwall.com/lists/oss-security/2015/05/23/4 http://www.securitytracker.com/id/1032547 SuSE Security Announcement: SUSE-SU-2015:1152 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00027.html SuSE Security Announcement: SUSE-SU-2015:1519 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00015.html SuSE Security Announcement: openSUSE-SU-2015:1965 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-11/msg00063.html http://www.ubuntu.com/usn/USN-2630-1 Common Vulnerability Exposure (CVE) ID: CVE-2015-5279 BugTraq ID: 76746 http://www.securityfocus.com/bid/76746 Debian Security Information: DSA-3361 (Google Search) http://www.debian.org/security/2015/dsa-3361 Debian Security Information: DSA-3362 (Google Search) http://www.debian.org/security/2015/dsa-3362 http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169039.html http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169036.html http://lists.fedoraproject.org/pipermail/package-announce/2015-September/167369.html https://security.gentoo.org/glsa/201602-01 https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg03984.html http://www.openwall.com/lists/oss-security/2015/09/15/3 RedHat Security Advisories: RHSA-2015:1896 http://rhn.redhat.com/errata/RHSA-2015-1896.html RedHat Security Advisories: RHSA-2015:1923 http://rhn.redhat.com/errata/RHSA-2015-1923.html RedHat Security Advisories: RHSA-2015:1924 http://rhn.redhat.com/errata/RHSA-2015-1924.html RedHat Security Advisories: RHSA-2015:1925 http://rhn.redhat.com/errata/RHSA-2015-1925.html http://www.securitytracker.com/id/1033569 SuSE Security Announcement: SUSE-SU-2015:1782 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00019.html Common Vulnerability Exposure (CVE) ID: CVE-2015-7549 BugTraq ID: 80761 http://www.securityfocus.com/bid/80761 Debian Security Information: DSA-3471 (Google Search) http://www.debian.org/security/2016/dsa-3471 http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175380.html http://www.openwall.com/lists/oss-security/2015/12/14/2 Common Vulnerability Exposure (CVE) ID: CVE-2016-2538 BugTraq ID: 83336 http://www.securityfocus.com/bid/83336 https://security.gentoo.org/glsa/201604-01 https://lists.debian.org/debian-lts-announce/2018/11/msg00038.html http://www.openwall.com/lists/oss-security/2016/02/22/3 https://lists.gnu.org/archive/html/qemu-devel/2016-02/msg03658.html http://lists.nongnu.org/archive/html/qemu-stable/2016-03/msg00064.html http://www.ubuntu.com/usn/USN-2974-1 Common Vulnerability Exposure (CVE) ID: CVE-2016-2841 BugTraq ID: 84028 http://www.securityfocus.com/bid/84028 https://security.gentoo.org/glsa/201609-01 http://www.openwall.com/lists/oss-security/2016/03/02/8 https://lists.gnu.org/archive/html/qemu-devel/2016-02/msg06126.html Common Vulnerability Exposure (CVE) ID: CVE-2016-7161 BugTraq ID: 93141 http://www.securityfocus.com/bid/93141 https://security.gentoo.org/glsa/201611-11 http://www.openwall.com/lists/oss-security/2016/09/23/6 http://www.openwall.com/lists/oss-security/2016/09/23/8 https://lists.gnu.org/archive/html/qemu-devel/2016-08/msg01598.html https://lists.gnu.org/archive/html/qemu-devel/2016-08/msg01877.html SuSE Security Announcement: openSUSE-SU-2016:3237 (Google Search) http://lists.opensuse.org/opensuse-updates/2016-12/msg00140.html Common Vulnerability Exposure (CVE) ID: CVE-2016-7908 BugTraq ID: 93273 http://www.securityfocus.com/bid/93273 http://www.openwall.com/lists/oss-security/2016/10/03/2 http://www.openwall.com/lists/oss-security/2016/10/03/5 https://lists.gnu.org/archive/html/qemu-devel/2016-09/msg05557.html Common Vulnerability Exposure (CVE) ID: CVE-2017-5579 BugTraq ID: 95780 http://www.securityfocus.com/bid/95780 https://security.gentoo.org/glsa/201702-28 https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html http://www.openwall.com/lists/oss-security/2017/01/24/8 http://www.openwall.com/lists/oss-security/2017/01/25/3 RedHat Security Advisories: RHSA-2017:2392 https://access.redhat.com/errata/RHSA-2017:2392 RedHat Security Advisories: RHSA-2017:2408 https://access.redhat.com/errata/RHSA-2017:2408 Common Vulnerability Exposure (CVE) ID: CVE-2017-5667 BugTraq ID: 95885 http://www.securityfocus.com/bid/95885 http://www.openwall.com/lists/oss-security/2017/01/30/2 http://www.openwall.com/lists/oss-security/2017/01/31/10 http://www.openwall.com/lists/oss-security/2017/02/12/1 Common Vulnerability Exposure (CVE) ID: CVE-2017-5987 BugTraq ID: 96263 http://www.securityfocus.com/bid/96263 https://security.gentoo.org/glsa/201704-01 http://www.openwall.com/lists/oss-security/2017/02/14/8 https://lists.gnu.org/archive/html/qemu-devel/2017-02/msg02776.html Common Vulnerability Exposure (CVE) ID: CVE-2017-9373 BugTraq ID: 98921 http://www.securityfocus.com/bid/98921 Debian Security Information: DSA-3920 (Google Search) http://www.debian.org/security/2017/dsa-3920 http://www.openwall.com/lists/oss-security/2017/06/05/1 Common Vulnerability Exposure (CVE) ID: CVE-2017-9374 BugTraq ID: 98905 http://www.securityfocus.com/bid/98905 http://www.openwall.com/lists/oss-security/2017/06/06/3 Common Vulnerability Exposure (CVE) ID: CVE-2017-9503 BugTraq ID: 99010 http://www.securityfocus.com/bid/99010 https://lists.debian.org/debian-lts-announce/2020/07/msg00020.html http://www.openwall.com/lists/oss-security/2017/06/08/1 https://lists.gnu.org/archive/html/qemu-devel/2017-06/msg01309.html https://lists.gnu.org/archive/html/qemu-devel/2017-06/msg01313.html Common Vulnerability Exposure (CVE) ID: CVE-2019-6778 BugTraq ID: 106758 http://www.securityfocus.com/bid/106758 Bugtraq: 20190531 [SECURITY] [DSA 4454-1] qemu security update (Google Search) https://seclists.org/bugtraq/2019/May/76 Debian Security Information: DSA-4454 (Google Search) https://www.debian.org/security/2019/dsa-4454 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CGCFIFSIWUREEQQOZDZFBYKWZHXCWBZN/ [Qemu-devel][PULL 65/65] 20190114 slirp: check data length while emulating ident https://lists.gnu.org/archive/html/qemu-devel/2019-01/msg03132.html [oss-security] 20190124 CVE-2019-6778 QEMU: slirp: heap buffer overflow in tcp_emu() http://www.openwall.com/lists/oss-security/2019/01/24/5 RedHat Security Advisories: RHSA-2019:1883 https://access.redhat.com/errata/RHSA-2019:1883 RedHat Security Advisories: RHSA-2019:1968 https://access.redhat.com/errata/RHSA-2019:1968 RedHat Security Advisories: RHSA-2019:2425 https://access.redhat.com/errata/RHSA-2019:2425 RedHat Security Advisories: RHSA-2019:2892 https://access.redhat.com/errata/RHSA-2019:2892 SuSE Security Announcement: SUSE-SA-2019:0254-1 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-02/msg00073.html SuSE Security Announcement: openSUSE-SU-2019:1074 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html SuSE Security Announcement: openSUSE-SU-2019:1226 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00072.html SuSE Security Announcement: openSUSE-SU-2019:2044 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00001.html SuSE Security Announcement: openSUSE-SU-2020:0468 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00007.html https://usn.ubuntu.com/3923-1/ Common Vulnerability Exposure (CVE) ID: CVE-2019-9824 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RVDHJB2QKXNDU7OFXIHIL5O5VN5QCSZL/ https://lists.gnu.org/archive/html/qemu-devel/2019-03/msg00400.html RedHat Security Advisories: RHSA-2019:1650 https://access.redhat.com/errata/RHSA-2019:1650 RedHat Security Advisories: RHSA-2019:2078 https://access.redhat.com/errata/RHSA-2019:2078 RedHat Security Advisories: RHSA-2019:2553 https://access.redhat.com/errata/RHSA-2019:2553 RedHat Security Advisories: RHSA-2019:3345 https://access.redhat.com/errata/RHSA-2019:3345
Copyright	Copyright (C) 2020 Greenbone Networks GmbH