Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2016-1981

Опубликовано: 29 дек. 2016
Источник: nvd
CVSS3: 5.5
CVSS2: 2.1
EPSS Низкий

Описание

QEMU (aka Quick Emulator) built with the e1000 NIC emulation support is vulnerable to an infinite loop issue. It could occur while processing data via transmit or receive descriptors, provided the initial receive/transmit descriptor head (TDH/RDH) is set outside the allocated descriptor buffer. A privileged user inside guest could use this flaw to crash the QEMU instance resulting in DoS.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*
Версия до 2.5.1.1 (включая)
Конфигурация 2

Одно из

cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

EPSS

Процентиль: 19%
0.00062
Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-835

Связанные уязвимости

ubuntu логотип

CVE-2016-1981

CVSS3: 5.5
ubuntu
почти 9 лет назад

QEMU (aka Quick Emulator) built with the e1000 NIC emulation support is vulnerable to an infinite loop issue. It could occur while processing data via transmit or receive descriptors, provided the initial receive/transmit descriptor head (TDH/RDH) is set outside the allocated descriptor buffer. A privileged user inside guest could use this flaw to crash the QEMU instance resulting in DoS.

redhat логотип

CVE-2016-1981

redhat
почти 10 лет назад

QEMU (aka Quick Emulator) built with the e1000 NIC emulation support is vulnerable to an infinite loop issue. It could occur while processing data via transmit or receive descriptors, provided the initial receive/transmit descriptor head (TDH/RDH) is set outside the allocated descriptor buffer. A privileged user inside guest could use this flaw to crash the QEMU instance resulting in DoS.

debian логотип

CVE-2016-1981

CVSS3: 5.5
debian
почти 9 лет назад

QEMU (aka Quick Emulator) built with the e1000 NIC emulation support i ...

github логотип

GHSA-ch9p-9c28-4r3p

CVSS3: 5.5
github
больше 3 лет назад

QEMU (aka Quick Emulator) built with the e1000 NIC emulation support is vulnerable to an infinite loop issue. It could occur while processing data via transmit or receive descriptors, provided the initial receive/transmit descriptor head (TDH/RDH) is set outside the allocated descriptor buffer. A privileged user inside guest could use this flaw to crash the QEMU instance resulting in DoS.

oracle-oval логотип

ELSA-2016-2585

oracle-oval
около 9 лет назад

ELSA-2016-2585: qemu-kvm security, bug fix, and enhancement update (MODERATE)

EPSS

Процентиль: 19%
0.00062
Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-835