CVE-2016-2857

Опубликовано: 12 апр. 2016

Источник: debian

EPSS Низкий

Описание

The net_checksum_calculate function in net/checksum.c in QEMU allows local guest OS users to cause a denial of service (out-of-bounds heap read and crash) via the payload length in a crafted packet.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
qemu	fixed	1:2.6+dfsg-1		package
qemu-kvm	removed			package

Примечания

http://git.qemu.org/?p=qemu.git;a=commit;h=362786f14a753d8a5256ef97d7c10ed576d6572b (v2.6.0-rc0)
https://bugzilla.redhat.com/show_bug.cgi?id=1296567
https://www.openwall.com/lists/oss-security/2016/03/03/9

EPSS

Процентиль: 18%

0.00058

Низкий

Связанные уязвимости

CVE-2016-2857

CVSS3: 8.4

ubuntu

больше 9 лет назад

The net_checksum_calculate function in net/checksum.c in QEMU allows local guest OS users to cause a denial of service (out-of-bounds heap read and crash) via the payload length in a crafted packet.

CVE-2016-2857

CVSS3: 4.7

redhat

больше 9 лет назад

The net_checksum_calculate function in net/checksum.c in QEMU allows local guest OS users to cause a denial of service (out-of-bounds heap read and crash) via the payload length in a crafted packet.

CVE-2016-2857

CVSS3: 8.4

nvd

больше 9 лет назад

The net_checksum_calculate function in net/checksum.c in QEMU allows local guest OS users to cause a denial of service (out-of-bounds heap read and crash) via the payload length in a crafted packet.

GHSA-r736-2mvg-hchh

CVSS3: 8.4

github

больше 3 лет назад

The net_checksum_calculate function in net/checksum.c in QEMU allows local guest OS users to cause a denial of service (out-of-bounds heap read and crash) via the payload length in a crafted packet.

ELSA-2017-0083

oracle-oval

почти 9 лет назад

ELSA-2017-0083: qemu-kvm security and bug fix update (LOW)

EPSS

Процентиль: 18%

0.00058

Низкий