Homepage

qemu vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the qemu package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • M
CVE-2024-7409

*
  • M
Information Exposure

*
  • M
CVE-2024-6519

*
  • M
Buffer Overflow

<2.0.0+dfsg-2ubuntu1.47+esm4
  • M
Use After Free

<2.0.0+dfsg-2ubuntu1.47+esm4
  • M
CVE-2024-7730

<2.0.0+dfsg-2ubuntu1.47+esm4
  • M
Reachable Assertion

*
  • L
Improper Preservation of Permissions

*
  • L
Use After Free

<2.0.0+dfsg-2ubuntu1.47+esm4
  • L
NULL Pointer Dereference

*
  • M
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.47+esm3
  • L
Out-of-bounds Read

<2.0.0+dfsg-2ubuntu1.47+esm3
  • M
Off-by-one Error

*
  • L
Use After Free

<2.0.0+dfsg-2ubuntu1.47+esm2
  • L
Missing Release of Resource after Effective Lifetime

*
  • L
Off-by-one Error

<2.0.0+dfsg-2ubuntu1.47+esm2
  • M
Use After Free

*
  • M
Use After Free

*
  • L
Resource Exhaustion

*
  • M
Release of Invalid Pointer or Reference

<2.0.0+dfsg-2ubuntu1.47+esm2
  • L
Allocation of Resources Without Limits or Throttling

*
  • L
Access of Uninitialized Pointer

*
  • L
Access of Uninitialized Pointer

<2.0.0+dfsg-2ubuntu1.47+esm4
  • L
Access of Uninitialized Pointer

<2.0.0+dfsg-2ubuntu1.47+esm4
  • L
Out-of-Bounds

*
  • L
Out-of-bounds Read

*
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

*
  • M
Out-of-Bounds

*
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

*
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

*
  • L
Use After Free

*
  • L
Integer Overflow or Wraparound

*
  • L
Out-of-bounds Read

*
  • M
Use After Free

*
  • L
NULL Pointer Dereference

*
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

*
  • L
NULL Pointer Dereference

*
  • L
NULL Pointer Dereference

*
  • L
NULL Pointer Dereference

*
  • M
Out-of-bounds Read

*
  • M
Reachable Assertion

*
  • L
Reachable Assertion

*
  • L
NULL Pointer Dereference

*
  • L
Use After Free

*
  • M
Out-of-bounds Write

*
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

*
  • L
Out-of-bounds Read

*
  • L
NULL Pointer Dereference

*
  • L
NULL Pointer Dereference

*
  • M
Out-of-bounds Read

<2.0.0+dfsg-2ubuntu1.47+esm1
  • M
Out-of-bounds Write

*
  • L
Out-of-bounds Write

*
  • M
Use After Free

*
  • L
NULL Pointer Dereference

*
  • M
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.47+esm4
  • L
NULL Pointer Dereference

<2.0.0+dfsg-2ubuntu1.47+esm1
  • M
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.47+esm1
  • L
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.47+esm1
  • L
Out-of-bounds Read

<2.0.0+dfsg-2ubuntu1.47+esm1
  • L
Out-of-bounds Read

<2.0.0+dfsg-2ubuntu1.47+esm1
  • M
Integer Overflow or Wraparound

*
  • L
Memory Leak

<2.0.0+dfsg-2ubuntu1.47+esm4
  • M
Out-of-bounds Write

*
  • M
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.47+esm4
  • L
Use After Free

<2.0.0+dfsg-2ubuntu1.47
  • L
NULL Pointer Dereference

*
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.47
  • L
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.47
  • L
CVE-2019-13164

<2.0.0+dfsg-2ubuntu1.47
  • L
NULL Pointer Dereference

<2.0.0+dfsg-2ubuntu1.47
  • H
Information Exposure

<2.0.0+dfsg-2ubuntu1.46
  • M
CVE-2019-11091

<2.0.0+dfsg-2ubuntu1.46
  • H
Information Exposure

<2.0.0+dfsg-2ubuntu1.46
  • H
Information Exposure

<2.0.0+dfsg-2ubuntu1.46
  • L
NULL Pointer Dereference

<2.0.0+dfsg-2ubuntu1.46
  • M
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.46
  • L
Use of Uninitialized Resource

<2.0.0+dfsg-2ubuntu1.46
  • M
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.45
  • L
Race Condition

<2.0.0+dfsg-2ubuntu1.45
  • L
Use After Free

<2.0.0+dfsg-2ubuntu1.44
  • L
Out-of-bounds Read

<2.0.0+dfsg-2ubuntu1.44
  • M
Integer Overflow or Wraparound

<2.0.0+dfsg-2ubuntu1.44
  • M
Integer Overflow or Wraparound

<2.0.0+dfsg-2ubuntu1.44
  • M
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.44
  • M
Integer Overflow or Wraparound

<2.0.0+dfsg-2ubuntu1.44
  • L
Improper Privilege Management

<2.0.0+dfsg-2ubuntu1.3
  • M
Out-of-bounds Read

<2.0.0+dfsg-2ubuntu1.33
  • L
Improper Input Validation

<2.0.0+dfsg-2ubuntu1.3
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.19
  • M
Buffer Overflow

<2.0.0+dfsg-2ubuntu1.17
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.19
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.3
  • M
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.33
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.19
  • M
Out-of-bounds Read

<2.0.0+dfsg-2ubuntu1.33
  • M
Out-of-bounds Read

<2.0.0+dfsg-2ubuntu1.33
  • M
Integer Overflow or Wraparound

<2.0.0+dfsg-2ubuntu1.44
  • M
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.44
  • M
Information Exposure

<2.0.0+dfsg-2ubuntu1.42
  • M
Link Following

<2.0.0+dfsg-2ubuntu1.33
  • M
Out-of-bounds Read

<2.0.0+dfsg-2ubuntu1.41
  • L
Integer Overflow or Wraparound

<2.0.0+dfsg-2ubuntu1.39
  • L
Out-of-bounds Read

<2.0.0+dfsg-2ubuntu1.39
  • M
Use After Free

<2.0.0+dfsg-2ubuntu1.3
  • H
Information Exposure

<2.0.0+dfsg-2ubuntu1.38
  • M
NULL Pointer Dereference

<2.0.0+dfsg-2ubuntu1.22
  • M
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.21
  • L
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.39
  • L
Race Condition

<2.0.0+dfsg-2ubuntu1.39
  • L
Integer Overflow or Wraparound

<2.0.0+dfsg-2ubuntu1.39
  • L
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.35
  • L
CVE-2017-10664

<2.0.0+dfsg-2ubuntu1.35
  • M
Out-of-bounds Read

<2.0.0+dfsg-2ubuntu1.35
  • M
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.34
  • M
Information Exposure

<2.0.0+dfsg-2ubuntu1.35
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.35
  • L
Memory Leak

<2.0.0+dfsg-2ubuntu1.35
  • L
NULL Pointer Dereference

<2.0.0+dfsg-2ubuntu1.35
  • L
Memory Leak

<2.0.0+dfsg-2ubuntu1.35
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.35
  • L
Missing Release of Resource after Effective Lifetime

<2.0.0+dfsg-2ubuntu1.34
  • M
Incorrect Permission Assignment for Critical Resource

<2.0.0+dfsg-2ubuntu1.35
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.35
  • L
Missing Release of Resource after Effective Lifetime

<2.0.0+dfsg-2ubuntu1.34
  • L
Out-of-bounds Read

<2.0.0+dfsg-2ubuntu1.34
  • M
Resource Management Errors

<2.0.0+dfsg-2ubuntu1.21
  • L
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.22
  • M
Memory Leak

<2.0.0+dfsg-2ubuntu1.22
  • M
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.22
  • M
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.22
  • M
Missing Release of Resource after Effective Lifetime

<2.0.0+dfsg-2ubuntu1.22
  • M
Divide By Zero

<2.0.0+dfsg-2ubuntu1.22
  • L
Missing Release of Resource after Effective Lifetime

<2.0.0+dfsg-2ubuntu1.34
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.33
  • L
Divide By Zero

<2.0.0+dfsg-2ubuntu1.33
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.33
  • L
Memory Leak

<2.0.0+dfsg-2ubuntu1.33
  • M
Out-of-bounds Read

<2.0.0+dfsg-2ubuntu1.33
  • M
Integer Overflow or Wraparound

<2.0.0+dfsg-2ubuntu1.33
  • L
Memory Leak

<2.0.0+dfsg-2ubuntu1.33
  • L
Memory Leak

<2.0.0+dfsg-2ubuntu1.33
  • L
Memory Leak

<2.0.0+dfsg-2ubuntu1.33
  • L
Memory Leak

<2.0.0+dfsg-2ubuntu1.33
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.33
  • M
Race Condition

<2.0.0+dfsg-2ubuntu1.33
  • M
Reachable Assertion

<2.0.0+dfsg-2ubuntu1.22
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.22
  • M
Improper Input Validation

<2.0.0+dfsg-2ubuntu1.22
  • L
NULL Pointer Dereference

<2.0.0+dfsg-2ubuntu1.22
  • L
Memory Leak

<2.0.0+dfsg-2ubuntu1.33
  • L
Memory Leak

<2.0.0+dfsg-2ubuntu1.33
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.33
  • L
NULL Pointer Dereference

<2.0.0+dfsg-2ubuntu1.22
  • M
Out-of-bounds Read

<2.0.0+dfsg-2ubuntu1.22
  • L
Memory Leak

<2.0.0+dfsg-2ubuntu1.33
  • L
Memory Leak

<2.0.0+dfsg-2ubuntu1.33
  • L
Divide By Zero

<2.0.0+dfsg-2ubuntu1.33
  • L
Missing Release of Resource after Effective Lifetime

<2.0.0+dfsg-2ubuntu1.33
  • L
Use After Free

<2.0.0+dfsg-2ubuntu1.30
  • L
CVE-2016-7155

<2.0.0+dfsg-2ubuntu1.30
  • L
Integer Overflow or Wraparound

<2.0.0+dfsg-2ubuntu1.30
  • L
Directory Traversal

<2.0.0+dfsg-2ubuntu1.30
  • L
Excessive Iteration

<2.0.0+dfsg-2ubuntu1.30
  • L
Buffer Overflow

<2.0.0+dfsg-2ubuntu1.30
  • M
CVE-2016-6835

<2.0.0+dfsg-2ubuntu1.30
  • L
Incorrect Type Conversion or Cast

<2.0.0+dfsg-2ubuntu1.30
  • L
Improper Validation of Array Index

<2.0.0+dfsg-2ubuntu1.30
  • L
Improper Initialization

<2.0.0+dfsg-2ubuntu1.30
  • L
Missing Release of Resource after Effective Lifetime

<2.0.0+dfsg-2ubuntu1.30
  • M
Information Exposure

<2.0.0+dfsg-2ubuntu1.30
  • L
Integer Overflow or Wraparound

<2.0.0+dfsg-2ubuntu1.30
  • L
Missing Release of Resource after Effective Lifetime

<2.0.0+dfsg-2ubuntu1.30
  • L
Missing Release of Resource after Effective Lifetime

<2.0.0+dfsg-2ubuntu1.30
  • L
Missing Release of Resource after Effective Lifetime

<2.0.0+dfsg-2ubuntu1.30
  • L
Allocation of Resources Without Limits or Throttling

<2.0.0+dfsg-2ubuntu1.30
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.30
  • L
CVE-2016-8578

<2.0.0+dfsg-2ubuntu1.30
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.30
  • L
Missing Release of Resource after Effective Lifetime

<2.0.0+dfsg-2ubuntu1.30
  • L
Divide By Zero

<2.0.0+dfsg-2ubuntu1.33
  • L
Divide By Zero

<2.0.0+dfsg-2ubuntu1.33
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.30
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.30
  • M
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.30
  • M
CVE-2016-6351

<2.0.0+dfsg-2ubuntu1.26
  • L
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.26
  • L
Use of Uninitialized Resource

<2.0.0+dfsg-2ubuntu1.26
  • L
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.26
  • L
Out-of-bounds Read

<2.0.0+dfsg-2ubuntu1.26
  • M
Resource Exhaustion

<2.0.0+dfsg-2ubuntu1.30
  • L
CVE-2016-2392

<2.0.0+dfsg-2ubuntu1.24
  • L
NULL Pointer Dereference

<2.0.0+dfsg-2ubuntu1.24
  • L
Numeric Errors

<2.0.0+dfsg-2ubuntu1.24
  • L
Improper Input Validation

<2.0.0+dfsg-2ubuntu1.24
  • M
CVE-2016-5337

<2.0.0+dfsg-2ubuntu1.26
  • M
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.26
  • M
CVE-2016-5338

<2.0.0+dfsg-2ubuntu1.26
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.26
  • M
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.26
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.26
  • M
CVE-2016-4020

<2.0.0+dfsg-2ubuntu1.24
  • L
Resource Exhaustion

<2.0.0+dfsg-2ubuntu1.24
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.0.0+dfsg-2ubuntu1.22
  • L
Buffer Overflow

<2.0.0+dfsg-2ubuntu1.24
  • M
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.26
  • M
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.26
  • M
Integer Overflow or Wraparound

<2.0.0+dfsg-2ubuntu1.24
  • M
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.24
  • L
Buffer Overflow

<2.0.0+dfsg-2ubuntu1.24
  • M
Improper Access Control

<2.0.0+dfsg-2ubuntu1.22
  • M
Use After Free

<2.0.0+dfsg-2ubuntu1.22
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.24
  • L
Insufficient Entropy

<2.0.0+dfsg-2ubuntu1.24
  • M
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.22
  • L
Resource Exhaustion

<2.0.0+dfsg-2ubuntu1.11
  • M
Buffer Overflow

<2.0.0+dfsg-2ubuntu1.21
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.21
  • L
Divide By Zero

<2.0.0+dfsg-2ubuntu1.19
  • M
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.19
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.15
  • L
Code

<2.0.0+dfsg-2ubuntu1.13
  • M
Information Exposure

<2.0.0+dfsg-2ubuntu1.17
  • M
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.15
  • H
Out-of-bounds Write

<2.0.0+dfsg-2ubuntu1.13
  • M
Access Restriction Bypass

<2.0.0+dfsg-2ubuntu1.13
  • M
Resource Management Errors

<2.0.0+dfsg-2ubuntu1.13
  • M
Access Restriction Bypass

<2.0.0+dfsg-2ubuntu1.13
  • M
Incorrect Authorization

<2.0.0+dfsg-2ubuntu1.13
  • H
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.11
  • L
Resource Management Errors

<2.0.0+dfsg-2ubuntu1.17
  • L
Access Restriction Bypass

<2.0.0+dfsg-2ubuntu1.11
  • L
Improper Input Validation

<2.0.0+dfsg-2ubuntu1.9
  • M
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.9
  • L
Off-by-one Error

<2.0.0+dfsg-2ubuntu1.7
  • M
Improper Privilege Management

<2.0.0+dfsg-2ubuntu1.7
  • M
Improper Input Validation

<2.0.0+dfsg-2ubuntu1.7
  • L
NULL Pointer Dereference

<2.0.0+dfsg-2ubuntu1.7
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.3
  • M
Numeric Errors

<2.0.0+dfsg-2ubuntu1.3
  • L
Numeric Errors

<2.0.0+dfsg-2ubuntu1.3
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.3
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.3
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.3
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.3
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.3
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.3
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.3
  • M
Numeric Errors

<2.0.0+dfsg-2ubuntu1.3
  • L
Arbitrary Code Injection

<2.0.0+dfsg-2ubuntu1.3
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.3
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.3
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.3
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.3
  • L
Arbitrary Code Injection

<2.0.0+dfsg-2ubuntu1.3
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.3
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.3
  • L
Arbitrary Code Injection

<2.0.0+dfsg-2ubuntu1.3
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.3
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.3
  • L
Information Exposure

<2.0.0+dfsg-2ubuntu1.7
  • L
Out-of-Bounds

<2.0.0+dfsg-2ubuntu1.7
  • M
Improper Input Validation

<2.0.0~rc1+dfsg-0ubuntu3.1
  • M
Numeric Errors

<2.0.0~rc1+dfsg-0ubuntu3.1
  • M
Numeric Errors

<2.0.0~rc1+dfsg-0ubuntu3.1