Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-7466

Опубликовано: 10 дек. 2016
Источник: debian

Описание

Memory leak in the usb_xhci_exit function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator), when the xhci uses msix, allows local guest OS administrators to cause a denial of service (memory consumption and possibly QEMU process crash) by repeatedly unplugging a USB device.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
qemufixed1:2.7+dfsg-1package
qemunot-affectedjessiepackage
qemuno-dsawheezypackage
qemu-kvmremovedpackage
qemu-kvmnot-affectedwheezypackage

Примечания

  • https://lists.gnu.org/archive/html/qemu-devel/2016-09/msg02773.html

  • Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=b53dd4495ced2432a0b652ea895e651d07336f7e

  • The usb_xhci_exit and thus the patched code was introduced in:

  • http://git.qemu.org/?p=qemu.git;a=commit;h=53c30545fb34c43c84d62ea1c2b0dc6b53303c34 (v2.2.0-rc0)

  • https://www.openwall.com/lists/oss-security/2016/09/19/8

Связанные уязвимости

ubuntu логотип

CVE-2016-7466

CVSS3: 6
ubuntu
около 9 лет назад

Memory leak in the usb_xhci_exit function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator), when the xhci uses msix, allows local guest OS administrators to cause a denial of service (memory consumption and possibly QEMU process crash) by repeatedly unplugging a USB device.

redhat логотип

CVE-2016-7466

CVSS3: 3
redhat
больше 9 лет назад

Memory leak in the usb_xhci_exit function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator), when the xhci uses msix, allows local guest OS administrators to cause a denial of service (memory consumption and possibly QEMU process crash) by repeatedly unplugging a USB device.

nvd логотип

CVE-2016-7466

CVSS3: 6
nvd
около 9 лет назад

Memory leak in the usb_xhci_exit function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator), when the xhci uses msix, allows local guest OS administrators to cause a denial of service (memory consumption and possibly QEMU process crash) by repeatedly unplugging a USB device.

github логотип

GHSA-6xqp-cpj7-9325

CVSS3: 6
github
больше 3 лет назад

Memory leak in the usb_xhci_exit function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator), when the xhci uses msix, allows local guest OS administrators to cause a denial of service (memory consumption and possibly QEMU process crash) by repeatedly unplugging a USB device.

suse-cvrf логотип

openSUSE-SU-2016:3103-1

suse-cvrf
около 9 лет назад

Security update for qemu