Уязвимость CVE-2017-5856

Пакет	Статус	Версия исправления	Релиз	Тип
qemu	fixed	1:2.8+dfsg-3		package
qemu	not-affected		wheezy	package
qemu-kvm	removed			package
qemu-kvm	not-affected		wheezy	package

CVE-2017-5856

CVSS3: 6.5

ubuntu

почти 9 лет назад

Memory leak in the megasas_handle_dcmd function in hw/scsi/megasas.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption) via MegaRAID Firmware Interface (MFI) commands with the sglist size set to a value over 2 Gb.

CVE-2017-5856

CVSS3: 3

redhat

около 9 лет назад

Memory leak in the megasas_handle_dcmd function in hw/scsi/megasas.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption) via MegaRAID Firmware Interface (MFI) commands with the sglist size set to a value over 2 Gb.

CVE-2017-5856

CVSS3: 6.5

nvd

почти 9 лет назад

Memory leak in the megasas_handle_dcmd function in hw/scsi/megasas.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption) via MegaRAID Firmware Interface (MFI) commands with the sglist size set to a value over 2 Gb.

GHSA-3x3m-4c79-cmv9

CVSS3: 6.5

github

больше 3 лет назад

Memory leak in the megasas_handle_dcmd function in hw/scsi/megasas.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption) via MegaRAID Firmware Interface (MFI) commands with the sglist size set to a value over 2 Gb.

BDU:2017-00653

fstec

почти 9 лет назад

Уязвимость эмулятора аппаратного обеспечения QEMU, позволяющая нарушителю вызвать отказ в обслуживании

exploitDog

CVE-2017-5856

Описание

Пакеты

Примечания

Связанные уязвимости