Описание
hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (out-of-bounds access or infinite loop, and QEMU process crash) via a crafted page count for descriptor rings.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| qemu | fixed | 1:2.6+dfsg-3.1 | package | |
| qemu | not-affected | wheezy | package | |
| qemu-kvm | removed | package | ||
| qemu-kvm | not-affected | wheezy | package |
Примечания
Upstream patch: https://lists.gnu.org/archive/html/qemu-devel/2016-09/msg00050.html
https://bugzilla.redhat.com/show_bug.cgi?id=1373462
https://www.openwall.com/lists/oss-security/2016/09/06/2
Vulnerable code introduced after version 1.5: http://wiki.qemu.org/ChangeLog/1.5
Связанные уязвимости
hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (out-of-bounds access or infinite loop, and QEMU process crash) via a crafted page count for descriptor rings.
hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (out-of-bounds access or infinite loop, and QEMU process crash) via a crafted page count for descriptor rings.
hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (out-of-bounds access or infinite loop, and QEMU process crash) via a crafted page count for descriptor rings.
hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (out-of-bounds access or infinite loop, and QEMU process crash) via a crafted page count for descriptor rings.
