Ling Liu

**Name of the Vulnerable Software and Affected Versions** Xen (affected versions not specified) **Description** The issue is caused by an integer overflow in the x86 shadow pagetable code. This can be exploited by a local attacker to cause a denial of service, resulting in a host crash, or possibly gain privileges by shadowing a superpage mapping. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Xen versions 4.6.x and earlier **Description** The issue is related to errors in pointer dereferencing in the VMX component of the Xen hypervisor. It can be exploited by a local attacker to cause a denial of service, specifically a guest crash, through vectors related to a non-canonical RIP. The estimated number of potentially affected devices worldwide is not available. **Recommendations** For Xen versions 4.6.x and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** QEMU (affected versions not specified) **Description** A null pointer dereference flaw exists in QEMU when built with the TPR optimization for 32-bit Windows guests support. The issue occurs during I/O port write operations via the hmp interface, where the `current cpu` remains null, leading to a null pointer dereference. This flaw can be exploited by a user or process to crash the QEMU instance, resulting in a denial of service issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** QEMU (affected versions not specified) **Description** The issue is related to an OOB r/w access problem in QEMU when built with NE2000 device emulation support. It can occur during 'ioport' read/write operations. A privileged user or process could exploit this to leak or corrupt QEMU memory bytes. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** QEMU (affected versions not specified) **Description** The issue concerns the Human Monitor Interface support in QEMU, allowing remote attackers to cause a denial of service. This can be achieved through an out-of-bounds write, leading to an application crash. The vulnerability enables remote attackers to write data beyond the specified buffer, resulting in a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** QEMU (affected versions not specified) **Description** The issue is related to a buffer overflow in the `pcnet receive` function, which can be triggered when a guest NIC has a larger MTU, allowing remote attackers to cause a denial of service (guest OS crash) or execute arbitrary code via a large packet. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.