Описание
The Bluetooth subsystem in QEMU mishandles negative values for length variables, leading to memory corruption.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | kvm | Not affected | ||
| Red Hat Enterprise Linux 6 | qemu-kvm | Not affected | ||
| Red Hat Enterprise Linux 7 | qemu-kvm | Not affected | ||
| Red Hat Enterprise Linux 7 | qemu-kvm-ma | Not affected | ||
| Red Hat Enterprise Linux 7 | qemu-kvm-rhev | Not affected | ||
| Red Hat Enterprise Linux 8 | qemu-kvm | Not affected | ||
| Red Hat OpenStack Platform 10 (Newton) | qemu-kvm-rhev | Not affected | ||
| Red Hat OpenStack Platform 12 (Pike) | qemu-kvm-rhev | Not affected | ||
| Red Hat OpenStack Platform 13 (Queens) | qemu-kvm-rhev | Not affected | ||
| Red Hat OpenStack Platform 14 (Rocky) | qemu-kvm-rhev | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-190->CWE-122
https://bugzilla.redhat.com/show_bug.cgi?id=1607652Qemu: bt: Integer overflow in Bluetooth routines allows memory corruption
EPSS
Процентиль: 78%
0.01193
Низкий
6.4 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.7
ubuntu
больше 6 лет назад
The Bluetooth subsystem in QEMU mishandles negative values for length variables, leading to memory corruption.
CVSS3: 5.7
nvd
больше 6 лет назад
The Bluetooth subsystem in QEMU mishandles negative values for length variables, leading to memory corruption.
CVSS3: 5.7
debian
больше 6 лет назад
The Bluetooth subsystem in QEMU mishandles negative values for length ...
CVSS3: 5.7
github
около 3 лет назад
The Bluetooth subsystem in QEMU mishandles negative values for length variables, leading to memory corruption.
EPSS
Процентиль: 78%
0.01193
Низкий
6.4 Medium
CVSS3