← Back

Kvm

kvm

Vendor: Kvm Qumranet • 4 CVEs

CVEs (4)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2010-0419
1Kvm Qumranet
1Kvm
Apr 29, 2026
Mar 5, 2010
N/A· v4
N/A· v3
4.4 MEDIUM· v2
The x86 emulator in KVM 83, when a guest is configured for Symmetric Multiprocessing (SMP), does not properly restrict writing of segment selectors to segment registers, which might allow guest OS users to cause a denial...Show more
The x86 emulator in KVM 83, when a guest is configured for Symmetric Multiprocessing (SMP), does not properly restrict writing of segment selectors to segment registers, which might allow guest OS users to cause a denial of service (guest OS crash) or gain privileges on the guest OS by leveraging access to a (1) IO port or (2) MMIO region, and replacing an instruction in between emulator entry and instruction fetch.Show less
CVE-2010-0306
1Kvm Qumranet
1Kvm
Apr 29, 2026
Feb 12, 2010
N/A· v4
N/A· v3
4.1 MEDIUM· v2
The x86 emulator in KVM 83, when a guest is configured for Symmetric Multiprocessing (SMP), does not use the Current Privilege Level (CPL) and I/O Privilege Level (IOPL) to restrict instruction execution, which allows gu...Show more
The x86 emulator in KVM 83, when a guest is configured for Symmetric Multiprocessing (SMP), does not use the Current Privilege Level (CPL) and I/O Privilege Level (IOPL) to restrict instruction execution, which allows guest OS users to cause a denial of service (guest OS crash) or gain privileges on the guest OS by leveraging access to a (1) IO port or (2) MMIO region, and replacing an instruction in between emulator entry and instruction fetch, a related issue to CVE-2010-0298.Show less
CVE-2008-4539
4Canonical
DebianKvm Qumranet+1 more
4Debian Linux
KvmQemu+1 more
Apr 23, 2026
Dec 29, 2008
N/A· v4
N/A· v3
7.2 HIGH· v2
Heap-based buffer overflow in the Cirrus VGA implementation in (1) KVM before kvm-82 and (2) QEMU on Debian GNU/Linux and Ubuntu might allow local users to gain privileges by using the VNC console for a connection, aka t...Show more
Heap-based buffer overflow in the Cirrus VGA implementation in (1) KVM before kvm-82 and (2) QEMU on Debian GNU/Linux and Ubuntu might allow local users to gain privileges by using the VNC console for a connection, aka the LGD-54XX "bitblt" heap overflow. NOTE: this issue exists because of an incorrect fix for CVE-2007-1320.Show less
CVE-2008-2382
2Kvm Qumranet
Qemu
2Kvm
Qemu
Apr 23, 2026
Dec 24, 2008
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The protocol_client_msg function in vnc.c in the VNC server in (1) Qemu 0.9.1 and earlier and (2) KVM kvm-79 and earlier allows remote attackers to cause a denial of service (infinite loop) via a certain message.