CVE-2018-17963

Опубликовано: 21 мая 2018

Источник: redhat

CVSS3: 6.5

EPSS Низкий

Описание

qemu_deliver_packet_iov in net/net.c in Qemu accepts packet sizes greater than INT_MAX, which allows attackers to cause a denial of service or possibly have unspecified other impact.

A potential integer overflow issue was found in the networking back-end of QEMU. It could occur while receiving packets, because it accepted packets with large size value. Such overflow could lead to OOB buffer access issue. A user inside guest could use this flaw to crash the QEMU process resulting in DoS.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	kvm	Not affected
Red Hat Enterprise Linux 6	qemu-kvm	Will not fix
Red Hat Enterprise Linux 7	qemu-kvm	Will not fix
Red Hat Enterprise Linux 8	qemu-kvm	Not affected
Red Hat OpenStack Platform 12 (Pike)	qemu-kvm-rhev	Affected
Red Hat OpenStack Platform 8 (Liberty)	qemu-kvm-rhev	Will not fix
Red Hat OpenStack Platform 9 (Mitaka)	qemu-kvm-rhev	Will not fix
Red Hat Enterprise Linux 7	qemu-kvm-ma	Fixed	RHSA-2019:2166	06.08.2019
Red Hat OpenStack Platform 10.0 (Newton)	qemu-kvm-rhev	Fixed	RHSA-2019:2425	09.08.2019
Red Hat OpenStack Platform 13.0 (Queens)	qemu-kvm-rhev	Fixed	RHSA-2019:2425	09.08.2019

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-121

https://bugzilla.redhat.com/show_bug.cgi?id=1636777QEMU: net: ignore packets with large size

EPSS

Процентиль: 84%

0.02211

Низкий

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2018-17963

CVSS3: 9.8

ubuntu

больше 6 лет назад

qemu_deliver_packet_iov in net/net.c in Qemu accepts packet sizes greater than INT_MAX, which allows attackers to cause a denial of service or possibly have unspecified other impact.

CVE-2018-17963

CVSS3: 9.8

nvd

больше 6 лет назад

qemu_deliver_packet_iov in net/net.c in Qemu accepts packet sizes greater than INT_MAX, which allows attackers to cause a denial of service or possibly have unspecified other impact.

CVE-2018-17963

CVSS3: 9.8

debian

больше 6 лет назад

qemu_deliver_packet_iov in net/net.c in Qemu accepts packet sizes grea ...

GHSA-8mrp-f43f-c35w

CVSS3: 9.8

github

около 3 лет назад

qemu_deliver_packet_iov in net/net.c in Qemu accepts packet sizes greater than INT_MAX, which allows attackers to cause a denial of service or possibly have unspecified other impact.

SUSE-SU-2018:3332-1

suse-cvrf

больше 6 лет назад

Security update for xen

EPSS

Процентиль: 84%

0.02211

Низкий

6.5 Medium

CVSS3