Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-1568

Опубликовано: 12 апр. 2016
Источник: ubuntu
Приоритет: medium
CVSS2: 6.9
CVSS3: 8.8

Описание

Use-after-free vulnerability in hw/ide/ahci.c in QEMU, when built with IDE AHCI Emulation support, allows guest OS users to cause a denial of service (instance crash) or possibly execute arbitrary code via an invalid AHCI Native Command Queuing (NCQ) AIO command.

РелизСтатусПримечание
devel

released

1:2.5+dfsg-1ubuntu5
esm-infra-legacy/trusty

released

2.0.0+dfsg-2ubuntu1.22
precise

DNE

trusty

released

2.0.0+dfsg-2ubuntu1.22
trusty/esm

released

2.0.0+dfsg-2ubuntu1.22
upstream

needs-triage

vivid

ignored

end of life
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

wily

released

1:2.3+dfsg-5ubuntu9.2

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

precise

released

1.0+noroms-0ubuntu14.27
trusty

DNE

trusty/esm

DNE

upstream

needs-triage

vivid

DNE

vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

wily

DNE

Показывать по

Ссылки на источники

6.9 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2016-1568

redhat
около 10 лет назад

Use-after-free vulnerability in hw/ide/ahci.c in QEMU, when built with IDE AHCI Emulation support, allows guest OS users to cause a denial of service (instance crash) or possibly execute arbitrary code via an invalid AHCI Native Command Queuing (NCQ) AIO command.

nvd логотип

CVE-2016-1568

CVSS3: 8.8
nvd
почти 10 лет назад

Use-after-free vulnerability in hw/ide/ahci.c in QEMU, when built with IDE AHCI Emulation support, allows guest OS users to cause a denial of service (instance crash) or possibly execute arbitrary code via an invalid AHCI Native Command Queuing (NCQ) AIO command.

debian логотип

CVE-2016-1568

CVSS3: 8.8
debian
почти 10 лет назад

Use-after-free vulnerability in hw/ide/ahci.c in QEMU, when built with ...

github логотип

GHSA-gx29-hhc2-825w

CVSS3: 8.8
github
больше 3 лет назад

Use-after-free vulnerability in hw/ide/ahci.c in QEMU, when built with IDE AHCI Emulation support, allows guest OS users to cause a denial of service (instance crash) or possibly execute arbitrary code via an invalid AHCI Native Command Queuing (NCQ) AIO command.

fstec логотип

BDU:2016-01066

fstec
почти 10 лет назад

Уязвимость эмулятора аппаратного обеспечения QEMU, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код

6.9 Medium

CVSS2

8.8 High

CVSS3