Lucene search

K

RedhatCVELIST:CVE-2016-1568

HistoryApr 08, 2016 - 4:00 p.m.

CVE-2016-1568

2016-04-0816:00:00

redhat

www.cve.org

2

9.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

32.1%

Use-after-free vulnerability in hw/ide/ahci.c in QEMU, when built with IDE AHCI Emulation support, allows guest OS users to cause a denial of service (instance crash) or possibly execute arbitrary code via an invalid AHCI Native Command Queuing (NCQ) AIO command.

References

git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=4ab0359a8ae182a7ac5c99609667273167703fab

rhn.redhat.com/errata/RHSA-2016-0084.html

rhn.redhat.com/errata/RHSA-2016-0086.html

rhn.redhat.com/errata/RHSA-2016-0087.html

rhn.redhat.com/errata/RHSA-2016-0088.html

www.debian.org/security/2016/dsa-3469

www.debian.org/security/2016/dsa-3470

www.debian.org/security/2016/dsa-3471

www.openwall.com/lists/oss-security/2016/01/09/1

www.openwall.com/lists/oss-security/2016/01/09/2

www.securityfocus.com/bid/80191

www.securitytracker.com/id/1034859

security.gentoo.org/glsa/201602-01

9.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

32.1%

Related for CVELIST:CVE-2016-1568

debiancve1 nvd1 prion1 cve1 veracode1 ubuntucve1 redhat4 nessus20 fedora1 openvas25 debian6 osv3 mageia1 ubuntu1 gentoo1 ibm1 suse11