[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-USN-7094-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":54,"duplicates":55,"related":56,"reserved_at":9,"published_at":67,"modified_at":68,"state":9,"summary":69,"references_raw":71,"kevs":123,"epss":9,"epss_history":124,"metrics":125,"affected":126},"USN-7094-1","qemu vulnerabilities\n\nIt was discovered that QEMU incorrectly handled memory during certain VNC\noperations. A remote attacker could possibly use this issue to cause QEMU\nto consume resources, resulting in a denial of service. This issue only\naffected Ubuntu 14.04 LTS. (CVE-2019-20382)\n\nIt was discovered that QEMU incorrectly handled certain memory copy\noperations when loading ROM contents. If a user were tricked into running\nan untrusted kernel image, a remote attacker could possibly use this issue\nto run arbitrary code. This issue only affected Ubuntu 14.04 LTS.\n(CVE-2020-13765)\n\nAviv Sasson discovered that QEMU incorrectly handled Slirp networking. A\nremote attacker could use this issue to cause QEMU to crash, resulting in a\ndenial of service, or possibly execute arbitrary code. This issue only\naffected Ubuntu 14.04 LTS. (CVE-2020-1983)\n\nIt was discovered that the SLiRP networking implementation of the QEMU\nemulator did not properly manage memory under certain circumstances. An\nattacker could use this to cause a heap-based buffer overflow or other out-\nof-bounds access, which can lead to a denial of service (application crash)\nor potential execute arbitrary code. This issue only affected\nUbuntu 14.04 LTS. (CVE-2020-7039)\n\nIt was discovered that the SLiRP networking implementation of the QEMU\nemulator misuses snprintf return values. An attacker could use this to\ncause a denial of service (application crash) or potentially execute\narbitrary code. This issue only affected Ubuntu 14.04 LTS. (CVE-2020-8608)\n\nIt was discovered that QEMU SLiRP networking incorrectly handled certain\nudp packets. An attacker inside a guest could possibly use this issue to\nleak sensitive information from the host. This issue only affected\nUbuntu 14.04 LTS and Ubuntu 16.04 LTS. (CVE-2021-3592, CVE-2021-3594)\n\nIt was discovered that QEMU had a DMA reentrancy issue, leading to a\nuse-after-free vulnerability. An attacker could possibly use this issue\nto cause a denial of service. This issue only affected Ubuntu 18.04 LTS,\nUbuntu 20.04 LTS and Ubuntu 22.04 LTS. (CVE-2023-3019)\n\nIt was discovered that QEMU had a flaw in Virtio PCI Bindings, leading\nto a triggerable crash via vhost_net_stop. An attacker inside a guest\ncould possibly use this issue to cause a denial of service. This issue\nonly affected Ubuntu 24.04 LTS and Ubuntu 24.10. (CVE-2024-4693)\n\nIt was discovered that QEMU incorrectly handled memory in virtio-sound,\nleading to a heap-based buffer overflow. An attacker could possibly use\nthis issue to cause a denial of service or execute arbitrary code. This\nissue only affected Ubuntu 24.04 LTS and Ubuntu 24.10. (CVE-2024-7730)\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52],{"_key":15},"CVE-2019-20382",{"_key":17},"CVE-2020-13765",{"_key":19},"CVE-2020-1983",{"_key":21},"CVE-2020-7039",{"_key":23},"CVE-2020-8608",{"_key":25},"CVE-2021-3592",{"_key":27},"CVE-2021-3594",{"_key":29},"CVE-2023-3019",{"_key":31},"CVE-2024-4693",{"_key":33},"CVE-2024-7730",{"_key":35},"UBUNTU-CVE-2019-20382",{"_key":37},"UBUNTU-CVE-2020-13765",{"_key":39},"UBUNTU-CVE-2020-1983",{"_key":41},"UBUNTU-CVE-2020-7039",{"_key":43},"UBUNTU-CVE-2020-8608",{"_key":45},"UBUNTU-CVE-2021-3592",{"_key":47},"UBUNTU-CVE-2021-3594",{"_key":49},"UBUNTU-CVE-2023-3019",{"_key":51},"UBUNTU-CVE-2024-4693",{"_key":53},"UBUNTU-CVE-2024-7730",[],[],[57,58,59,60,61,62,63,64,65,66],{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},"2024-11-08T01:42:12Z","2026-05-20T16:03:26.836809385Z",{"cisa_kev":70,"cisa_ransomware":70,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[72,78,83,87,91,95,99,103,107,111,115,119],{"url":73,"sources":74,"tags":76},"https://ubuntu.com/security/notices/USN-7094-1",[75],"osv_ubuntu",[77],"Advisory",{"url":79,"sources":80,"tags":81},"https://ubuntu.com/security/CVE-2019-20382",[75],[82],"REPORT",{"url":84,"sources":85,"tags":86},"https://ubuntu.com/security/CVE-2020-1983",[75],[82],{"url":88,"sources":89,"tags":90},"https://ubuntu.com/security/CVE-2020-7039",[75],[82],{"url":92,"sources":93,"tags":94},"https://ubuntu.com/security/CVE-2020-8608",[75],[82],{"url":96,"sources":97,"tags":98},"https://ubuntu.com/security/CVE-2020-13765",[75],[82],{"url":100,"sources":101,"tags":102},"https://ubuntu.com/security/CVE-2021-3592",[75],[82],{"url":104,"sources":105,"tags":106},"https://ubuntu.com/security/CVE-2021-3594",[75],[82],{"url":108,"sources":109,"tags":110},"https://ubuntu.com/security/CVE-2023-3019",[75],[82],{"url":112,"sources":113,"tags":114},"https://ubuntu.com/security/CVE-2024-4693",[75],[82],{"url":116,"sources":117,"tags":118},"https://ubuntu.com/security/CVE-2024-7730",[75],[82],{"url":120,"sources":121,"tags":122},"https://bugs.launchpad.net/ubuntu/+source/qemu/+bug/2084210",[75],[82],[],[],[],[127],{"ecosystem":128,"name":129,"vendor":130,"product":129,"cpe_part":9,"purl_type":131,"purl_namespace":130,"purl_name":129,"source":9,"versions":132},"Ubuntu","qemu","ubuntu","deb",[133,139,142,145,148,151],{"version":134,"is_range":135,"range_type":136,"version_start":9,"version_start_type":9,"version_end":137,"version_end_type":138,"fixed_in":9},"lt2_0_0+dfsg_2ubuntu1_47+esm4",true,"ecosystem","2.0.0+dfsg-2ubuntu1.47+esm4","excluding",{"version":140,"is_range":135,"range_type":136,"version_start":9,"version_start_type":9,"version_end":141,"version_end_type":138,"fixed_in":9},"lt1:2_5+dfsg_5ubuntu10_51+esm3","1:2.5+dfsg-5ubuntu10.51+esm3",{"version":143,"is_range":135,"range_type":136,"version_start":9,"version_start_type":9,"version_end":144,"version_end_type":138,"fixed_in":9},"lt1:2_11+dfsg_1ubuntu7_42+esm2","1:2.11+dfsg-1ubuntu7.42+esm2",{"version":146,"is_range":135,"range_type":136,"version_start":9,"version_start_type":9,"version_end":147,"version_end_type":138,"fixed_in":9},"lt1:4_2_3ubuntu6_30","1:4.2-3ubuntu6.30",{"version":149,"is_range":135,"range_type":136,"version_start":9,"version_start_type":9,"version_end":150,"version_end_type":138,"fixed_in":9},"lt1:6_2+dfsg_2ubuntu6_24","1:6.2+dfsg-2ubuntu6.24",{"version":152,"is_range":135,"range_type":136,"version_start":9,"version_start_type":9,"version_end":153,"version_end_type":138,"fixed_in":9},"lt1:8_2_2+ds_0ubuntu1_4","1:8.2.2+ds-0ubuntu1.4"]