VulnerableCode Package Details - pkg:deb/debian/qemu@1:5.0-1?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-4848-dnv8-bqez	QEMU: use-after-free in TCG accelerator can lead to local privilege escalation	CVE-2020-24165
VCID-5t1d-ve8h-9ba1	QEMU: division by zero in oss_write() in audio/ossaudio.c	CVE-2020-14415
VCID-8cnu-b5en-7ye3	qemu: integer overflow in ati_2d_blt() in hw/display/ati-2d.c could lead to DoS	CVE-2020-11869
VCID-h22r-c3az-3fa3	An issue was discovered in ide_dma_cb() in hw/ide/core.c in QEMU 2.4.0 through 4.2.0. The guest system can crash the QEMU process in the host system via a special SCSI_IOCTL_SEND_COMMAND. It hits an assertion that implies that the size of successful DMA transfers there must be a multiple of 512 (the size of a sector). NOTE: a member of the QEMU security team disputes the significance of this issue because a "privileged guest user has many ways to cause similar DoS effect, without triggering this assert.	CVE-2019-20175

Vulnerability

Summary

Aliases

VCID-4848-dnv8-bqez

QEMU: use-after-free in TCG accelerator can lead to local privilege escalation

CVE-2020-24165

VCID-5t1d-ve8h-9ba1

QEMU: division by zero in oss_write() in audio/ossaudio.c

CVE-2020-14415

VCID-8cnu-b5en-7ye3

qemu: integer overflow in ati_2d_blt() in hw/display/ati-2d.c could lead to DoS

CVE-2020-11869

VCID-h22r-c3az-3fa3

An issue was discovered in ide_dma_cb() in hw/ide/core.c in QEMU 2.4.0 through 4.2.0. The guest system can crash the QEMU process in the host system via a special SCSI_IOCTL_SEND_COMMAND. It hits an assertion that implies that the size of successful DMA transfers there must be a multiple of 512 (the size of a sector). NOTE: a member of the QEMU security team disputes the significance of this issue because a "privileged guest user has many ways to cause similar DoS effect, without triggering this assert.

CVE-2019-20175

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-05-01T22:44:10.920667+00:00	Debian Importer	Fixing	VCID-h22r-c3az-3fa3	https://security-tracker.debian.org/tracker/data/json	38.6.0
2026-05-01T22:03:09.455673+00:00	Debian Importer	Fixing	VCID-5t1d-ve8h-9ba1	https://security-tracker.debian.org/tracker/data/json	38.6.0
2026-05-01T21:58:58.465464+00:00	Debian Importer	Fixing	VCID-8cnu-b5en-7ye3	https://security-tracker.debian.org/tracker/data/json	38.6.0
2026-05-01T21:52:10.344777+00:00	Debian Importer	Fixing	VCID-4848-dnv8-bqez	https://security-tracker.debian.org/tracker/data/json	38.6.0
2026-04-29T12:50:21.507894+00:00	Debian Importer	Fixing	VCID-5t1d-ve8h-9ba1	https://security-tracker.debian.org/tracker/data/json	38.5.0
2026-04-29T12:47:19.489049+00:00	Debian Importer	Fixing	VCID-8cnu-b5en-7ye3	https://security-tracker.debian.org/tracker/data/json	38.5.0
2026-04-29T12:42:30.367648+00:00	Debian Importer	Fixing	VCID-4848-dnv8-bqez	https://security-tracker.debian.org/tracker/data/json	38.5.0
2026-04-16T10:44:19.193990+00:00	Debian Importer	Fixing	VCID-4848-dnv8-bqez	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:02:41.979221+00:00	Debian Importer	Fixing	VCID-5t1d-ve8h-9ba1	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:03:45.534467+00:00	Debian Importer	Fixing	VCID-h22r-c3az-3fa3	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:44:37.103326+00:00	Debian Importer	Fixing	VCID-8cnu-b5en-7ye3	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T07:15:41.069808+00:00	Debian Importer	Fixing	VCID-4848-dnv8-bqez	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:44:18.026893+00:00	Debian Importer	Fixing	VCID-5t1d-ve8h-9ba1	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:04:28.663698+00:00	Debian Importer	Fixing	VCID-h22r-c3az-3fa3	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:52:26.923415+00:00	Debian Importer	Fixing	VCID-8cnu-b5en-7ye3	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:51:22.864587+00:00	Debian Importer	Fixing	VCID-4848-dnv8-bqez	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:51:22.416540+00:00	Debian Importer	Fixing	VCID-5t1d-ve8h-9ba1	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:51:21.716540+00:00	Debian Importer	Fixing	VCID-8cnu-b5en-7ye3	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:51:20.949272+00:00	Debian Importer	Fixing	VCID-h22r-c3az-3fa3	https://security-tracker.debian.org/tracker/data/json	38.1.0