296,147
Total vulnerabilities in the database
The virtio_load function in virtio/virtio.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers an out-of-bounds write.
| Software | From | Fixed in |
|---|---|---|
| qemu / qemu | 1.0-rc1 | 1.0-rc1.x |
| qemu / qemu | 1.1-rc3 | 1.1-rc3.x |
| qemu / qemu | 1.6.0 | 1.6.0.x |
| qemu / qemu | 1.5.0-rc1 | 1.5.0-rc1.x |
| qemu / qemu | 1.0-rc2 | 1.0-rc2.x |
| qemu / qemu | 1.5.3 | 1.5.3.x |
| qemu / qemu | 1.5.0 | 1.5.0.x |
| qemu / qemu | 1.6.0-rc3 | 1.6.0-rc3.x |
| qemu / qemu | 1.5.1 | 1.5.1.x |
| qemu / qemu | 1.1-rc4 | 1.1-rc4.x |
| qemu / qemu | 1.5.0-rc3 | 1.5.0-rc3.x |
| qemu / qemu | 1.0 | 1.0.x |
| qemu / qemu | 1.1-rc2 | 1.1-rc2.x |
| qemu / qemu | 1.5.2 | 1.5.2.x |
| qemu / qemu | 1.0.1 | 1.0.1.x |
| qemu / qemu | 1.0-rc3 | 1.0-rc3.x |
| qemu / qemu | 1.5.0-rc2 | 1.5.0-rc2.x |
| qemu / qemu | 1.7.1 | 1.7.1.x |
| qemu / qemu | 1.4.1 | 1.4.1.x |
| qemu / qemu | 1.6.0-rc2 | 1.6.0-rc2.x |
| qemu / qemu | 1.4.2 | 1.4.2.x |
| qemu / qemu | 1.6.2 | 1.6.2.x |
| qemu / qemu | 1.6.0-rc1 | 1.6.0-rc1.x |
| qemu / qemu | 1.6.1 | 1.6.1.x |
| qemu / qemu | 1.0-rc4 | 1.0-rc4.x |
| qemu / qemu | 1.1-rc1 | 1.1-rc1.x |
| qemu / qemu | 1.1 | 1.1.x |