CVE-2017-8112

Опубликовано: 02 мая 2017

Источник: debian

EPSS Низкий

Описание

hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (infinite loop and CPU consumption) via the message ring page count.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
qemu	fixed	1:2.8+dfsg-5		package
qemu	not-affected		wheezy	package
qemu-kvm	not-affected			package

Примечания

https://lists.gnu.org/archive/html/qemu-devel/2017-04/msg04578.html
https://bugzilla.redhat.com/show_bug.cgi?id=1445621
Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=f68826989cd4d1217797251339579c57b3c0934e

EPSS

Процентиль: 18%

0.00056

Низкий

Связанные уязвимости

CVE-2017-8112

CVSS3: 6.5

ubuntu

около 8 лет назад

hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (infinite loop and CPU consumption) via the message ring page count.

CVE-2017-8112

CVSS3: 3

redhat

около 8 лет назад

hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (infinite loop and CPU consumption) via the message ring page count.

CVE-2017-8112

CVSS3: 6.5

nvd

около 8 лет назад

hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (infinite loop and CPU consumption) via the message ring page count.

GHSA-q6cx-7x3w-57hw

CVSS3: 6.5

github

около 3 лет назад

hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (infinite loop and CPU consumption) via the message ring page count.

SUSE-SU-2017:1770-1

suse-cvrf

почти 8 лет назад

Security update for xen

EPSS

Процентиль: 18%

0.00056

Низкий