Lucene search

K

RedhatCVELIST:CVE-2016-4001

HistoryMay 23, 2016 - 7:00 p.m.

CVE-2016-4001

2016-05-2319:00:00

redhat

www.cve.org

6

8.9 High

AI Score

Confidence

High

0.035 Low

EPSS

Percentile

91.6%

Buffer overflow in the stellaris_enet_receive function in hw/net/stellaris_enet.c in QEMU, when the Stellaris ethernet controller is configured to accept large packets, allows remote attackers to cause a denial of service (QEMU crash) via a large packet.

References

git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=3a15cc0e1ee7168db0782133d2607a6bfa422d66

lists.fedoraproject.org/pipermail/package-announce/2016-April/183275.html

lists.fedoraproject.org/pipermail/package-announce/2016-May/183350.html

lists.fedoraproject.org/pipermail/package-announce/2016-May/184209.html

www.openwall.com/lists/oss-security/2016/04/11/4

www.openwall.com/lists/oss-security/2016/04/12/6

www.securityfocus.com/bid/85976

www.ubuntu.com/usn/USN-2974-1

lists.debian.org/debian-lts-announce/2018/11/msg00038.html

lists.gnu.org/archive/html/qemu-devel/2016-04/msg01334.html

security.gentoo.org/glsa/201609-01

8.9 High

AI Score

Confidence

High

0.035 Low

EPSS

Percentile

91.6%

Related for CVELIST:CVE-2016-4001

cve1 nvd1 debiancve1 ubuntucve1 prion1 threatpost1 fedora5 openvas23 nessus28 ubuntu1 suse12 mageia1 gentoo1 ibm1 osv1 debian1