Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-5105

Опубликовано: 02 сент. 2016
Источник: ubuntu
Приоритет: low
CVSS2: 1.9
CVSS3: 4.4

Описание

The megasas_dcmd_cfg_read function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, uses an uninitialized variable, which allows local guest administrators to read host memory via vectors involving a MegaRAID Firmware Interface (MFI) command.

РелизСтатусПримечание
devel

not-affected

1:2.6+dfsg-3ubuntu1
esm-infra-legacy/trusty

released

2.0.0+dfsg-2ubuntu1.26
esm-infra/xenial

released

1:2.5+dfsg-5ubuntu10.3
precise

DNE

trusty

released

2.0.0+dfsg-2ubuntu1.26
trusty/esm

released

2.0.0+dfsg-2ubuntu1.26
upstream

needs-triage

vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

wily

ignored

end of life

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

precise

not-affected

code not present
trusty

DNE

trusty/esm

DNE

upstream

needs-triage

vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

wily

DNE

xenial

DNE

Показывать по

Ссылки на источники

1.9 Low

CVSS2

4.4 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2016-5105

redhat
больше 9 лет назад

The megasas_dcmd_cfg_read function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, uses an uninitialized variable, which allows local guest administrators to read host memory via vectors involving a MegaRAID Firmware Interface (MFI) command.

nvd логотип

CVE-2016-5105

CVSS3: 4.4
nvd
больше 9 лет назад

The megasas_dcmd_cfg_read function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, uses an uninitialized variable, which allows local guest administrators to read host memory via vectors involving a MegaRAID Firmware Interface (MFI) command.

debian логотип

CVE-2016-5105

CVSS3: 4.4
debian
больше 9 лет назад

The megasas_dcmd_cfg_read function in hw/scsi/megasas.c in QEMU, when ...

github логотип

GHSA-fj37-m473-29p7

CVSS3: 4.4
github
больше 3 лет назад

The megasas_dcmd_cfg_read function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, uses an uninitialized variable, which allows local guest administrators to read host memory via vectors involving a MegaRAID Firmware Interface (MFI) command.

fstec логотип

BDU:2016-02071

fstec
больше 9 лет назад

Уязвимость эмулятора аппаратного обеспечения QEMU, позволяющая нарушителю читать память хоста

1.9 Low

CVSS2

4.4 Medium

CVSS3