Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-7908

Опубликовано: 05 окт. 2016
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 2.1
CVSS3: 4.4

Описание

The mcf_fec_do_tx function in hw/net/mcf_fec.c in QEMU (aka Quick Emulator) does not properly limit the buffer descriptor count when transmitting packets, which allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) via vectors involving a buffer descriptor with a length of 0 and crafted values in bd.flags.

РелизСтатусПримечание
devel

released

1:2.6.1+dfsg-0ubuntu9
esm-infra-legacy/trusty

not-affected

2.0.0+dfsg-2ubuntu1.30
esm-infra/xenial

not-affected

1:2.5+dfsg-5ubuntu10.6
precise

DNE

trusty

released

2.0.0+dfsg-2ubuntu1.30
trusty/esm

not-affected

2.0.0+dfsg-2ubuntu1.30
upstream

needs-triage

vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

released

1:2.5+dfsg-5ubuntu10.6

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

precise

released

1.0+noroms-0ubuntu14.31
trusty

DNE

trusty/esm

DNE

upstream

needs-triage

vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

yakkety

DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 33%
0.00129
Низкий

2.1 Low

CVSS2

4.4 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2016-7908

CVSS3: 3
redhat
почти 9 лет назад

The mcf_fec_do_tx function in hw/net/mcf_fec.c in QEMU (aka Quick Emulator) does not properly limit the buffer descriptor count when transmitting packets, which allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) via vectors involving a buffer descriptor with a length of 0 and crafted values in bd.flags.

nvd логотип

CVE-2016-7908

CVSS3: 4.4
nvd
почти 9 лет назад

The mcf_fec_do_tx function in hw/net/mcf_fec.c in QEMU (aka Quick Emulator) does not properly limit the buffer descriptor count when transmitting packets, which allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) via vectors involving a buffer descriptor with a length of 0 and crafted values in bd.flags.

debian логотип

CVE-2016-7908

CVSS3: 4.4
debian
почти 9 лет назад

The mcf_fec_do_tx function in hw/net/mcf_fec.c in QEMU (aka Quick Emul ...

github логотип

GHSA-2f8w-w2fc-fv9w

CVSS3: 4.4
github
больше 3 лет назад

The mcf_fec_do_tx function in hw/net/mcf_fec.c in QEMU (aka Quick Emulator) does not properly limit the buffer descriptor count when transmitting packets, which allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) via vectors involving a buffer descriptor with a length of 0 and crafted values in bd.flags.

suse-cvrf логотип

SUSE-SU-2016:3273-1

suse-cvrf
больше 8 лет назад

Security update for xen

EPSS

Процентиль: 33%
0.00129
Низкий

2.1 Low

CVSS2

4.4 Medium

CVSS3