Описание
Qemu before 2.0 block driver for Hyper-V VHDX Images is vulnerable to infinite loops and other potential issues when calculating BAT entries, due to missing bounds checks for block_size and logical_sector_size variables. These are used to derive other fields like 'sectors_per_block' etc. A user able to alter the Qemu disk image could ise this flaw to crash the Qemu instance resulting in DoS.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.0.0~rc1+dfsg-0ubuntu3 |
| esm-infra-legacy/trusty | not-affected | 2.0.0~rc1+dfsg-0ubuntu3 |
| lucid | DNE | |
| precise | DNE | |
| quantal | DNE | |
| saucy | ignored | end of life |
| trusty | not-affected | 2.0.0~rc1+dfsg-0ubuntu3 |
| trusty/esm | not-affected | 2.0.0~rc1+dfsg-0ubuntu3 |
| upstream | released | 1.7.2, 2.0 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| lucid | not-affected | code not present |
| precise | not-affected | code not present |
| quantal | not-affected | code not present |
| saucy | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needs-triage |
Показывать по
EPSS
5.5 Medium
CVSS3
Связанные уязвимости
Qemu before 2.0 block driver for Hyper-V VHDX Images is vulnerable to infinite loops and other potential issues when calculating BAT entries, due to missing bounds checks for block_size and logical_sector_size variables. These are used to derive other fields like 'sectors_per_block' etc. A user able to alter the Qemu disk image could ise this flaw to crash the Qemu instance resulting in DoS.
Qemu before 2.0 block driver for Hyper-V VHDX Images is vulnerable to infinite loops and other potential issues when calculating BAT entries, due to missing bounds checks for block_size and logical_sector_size variables. These are used to derive other fields like 'sectors_per_block' etc. A user able to alter the Qemu disk image could ise this flaw to crash the Qemu instance resulting in DoS.
Qemu before 2.0 block driver for Hyper-V VHDX Images is vulnerable to ...
Qemu before 2.0 block driver for Hyper-V VHDX Images is vulnerable to infinite loops and other potential issues when calculating BAT entries, due to missing bounds checks for block_size and logical_sector_size variables. These are used to derive other fields like 'sectors_per_block' etc. A user able to alter the Qemu disk image could ise this flaw to crash the Qemu instance resulting in DoS.
EPSS
5.5 Medium
CVSS3