Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2018-7550
Description:The load_multiboot function in hw/i386/multiboot.c in Quick Emulator (aka QEMU) allows local guest OS users to execute arbitrary code on the QEMU host via a mh_load_end_addr value greater than mh_bss_end_addr, which triggers an out-of-bounds read or write memory access.
Test IDs: 1.3.6.1.4.1.25623.1.0.891350   1.3.6.1.4.1.25623.1.0.891351   1.3.6.1.4.1.25623.1.0.704213   1.3.6.1.4.1.25623.1.0.882939   1.3.6.1.4.1.25623.1.0.891497   1.3.6.1.4.1.25623.1.1.2.2018.1313   1.3.6.1.4.1.25623.1.1.2.2018.1268   1.3.6.1.4.1.25623.1.1.2.2018.1314  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2018-7550
BugTraq ID: 103181
http://www.securityfocus.com/bid/103181
Debian Security Information: DSA-4213 (Google Search)
https://www.debian.org/security/2018/dsa-4213
https://lists.debian.org/debian-lts-announce/2018/04/msg00015.html
https://lists.debian.org/debian-lts-announce/2018/04/msg00016.html
https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html
https://lists.gnu.org/archive/html/qemu-devel/2018-02/msg06890.html
RedHat Security Advisories: RHSA-2018:1369
https://access.redhat.com/errata/RHSA-2018:1369
RedHat Security Advisories: RHSA-2018:2462
https://access.redhat.com/errata/RHSA-2018:2462
https://usn.ubuntu.com/3649-1/




© 1998-2024 E-Soft Inc. All rights reserved.