Lucene search

K

GoogleOSV:CVE-2017-11334

HistoryAug 02, 2017 - 7:29 p.m.

CVE-2017-11334

2017-08-0219:29:00

Google

osv.dev

6

7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.1%

The address_space_write_continue function in exec.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds access and guest instance crash) by leveraging use of qemu_map_ram_ptr to access guest ram block area.

CPENameOperatorVersion
qemueq2.8.0-rc4
qemueq2.9.0-rc0
qemueq2.3.0-rc3
qemueq1.1-rc1
qemueq1.5.0-rc0
qemueq0.5.0
qemueq2.4.0-rc0
qemueq0.1.4
qemueq2.2.0-rc1
qemueq2.4.0-rc1

Rows per page:

1-10 of 1241

References

www.debian.org/security/2017/dsa-3925

www.openwall.com/lists/oss-security/2017/07/17/4

www.securityfocus.com/bid/99895

access.redhat.com/errata/RHSA-2017:3369

access.redhat.com/errata/RHSA-2017:3466

access.redhat.com/errata/RHSA-2017:3470

access.redhat.com/errata/RHSA-2017:3471

access.redhat.com/errata/RHSA-2017:3472

access.redhat.com/errata/RHSA-2017:3473

access.redhat.com/errata/RHSA-2017:3474

bugzilla.redhat.com/show_bug.cgi?id=1471638

lists.gnu.org/archive/html/qemu-devel/2017-07/msg03775.html

usn.ubuntu.com/3575-1/

7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.1%

Related for OSV:CVE-2017-11334

cve1 debiancve1 cvelist1 ubuntucve1 veracode1 prion1 nvd1 redhat7 nessus25 openvas20 suse13 debian1 fedora4 osv1 ubuntu2 oraclelinux5