Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
libspice, as used in QEMU-KVM in Red Hat Enterprise Virtualization Hypervisor (aka RHEV-H or rhev-hypervisor) before 5.5-2.2 and possibly other products, allows guest OS users to read from or write to arbitrary QEMU memory by modifying the address that is used by Cairo for memory mappings.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat Enterprise Virtualization Hypervisor QEMU-KVM 缓冲区溢出漏洞
Vulnerability Description
QEMU是法国程序员法布里斯-贝拉(Fabrice Bellard)所研发的一套模拟处理器软件。QEMU-KVM是其中的一个分支,提供KVM和QEMU的附加功能。 Red Hat Enterprise Virtualization Hypervisor(又名RHEV-H或rhev-hypervisor)5.4-2.1及之前的版本及其他产品中的QEMU-KVM虚拟机中使用的libspice软件包中存在安全漏洞。攻击者可利用该漏洞控制‘address Cairo’库用来映射内存,读取或写入任意QEMU内存。
CVSS Information
N/A
Vulnerability Type
N/A