AVG-2322 log

Package qemu
Status Fixed
Severity Medium
Type multiple issues
Affected 6.0.0-3
Fixed 6.1.0-1
Current 6.1.0-5 [extra]
Ticket None
Created Wed Aug 25 10:41:22 2021
Issue Severity Remote Type Description
CVE-2021-3682 Medium No Arbitrary code execution
A security issue was found in the USB redirector device emulation of QEMU. It occurs when dropping packets during a bulk transfer from a SPICE client due to...
CVE-2021-3608 Medium No Arbitrary code execution
A security issue was found in the QEMU implementation of VMWare's paravirtual RDMA device. It could occur while handling a "PVRDMA_REG_DSRHIGH" write from...
CVE-2021-3607 Low No Denial of service
An integer overflow was found in the QEMU implementation of VMWare's paravirtual RDMA device. It could occur while handling a "PVRDMA_REG_DSRHIGH" write...
CVE-2021-3582 Low No Denial of service
A security issue was found in the QEMU implementation of VMWare's paravirtual RDMA device. It could occur while handling a "PVRDMA_CMD_CREATE_MR" command...
CVE-2021-3546 Low No Arbitrary code execution
An out-of-bounds write vulnerability was found in the virtio vhost- user GPU device (vhost-user-gpu) of QEMU. The flaw exists in virgl_cmd_get_capset() in...
CVE-2021-3545 Low No Information disclosure
An information disclosure vulnerability was found in the virtio vhost- user GPU device (vhost-user-gpu) of QEMU. The flaw exists in...
CVE-2021-3544 Low No Denial of service
Several memory leaks were found in the virtio vhost-user GPU device (vhost-user-gpu) of QEMU. They exist in contrib/vhost-user-gpu/vhost- user-gpu.c and...
CVE-2021-3527 Low No Denial of service
A security issue was found in the USB redirection support (usb-redir) of QEMU. More specifically, usb-host and usb-redirect try to batch bulk transfers by...