Lucene search
GoogleOSV:DLA-679-1HistoryOct 25, 2016 - 12:00 a.m.
qemu-kvm - security update
2016-10-2500:00:00
Google
osv.dev
21
EPSS
0.001
Percentile
26.7%
Multiple vulnerabilities have been found in qemu-kvm:
- CVE-2016-8576
qemu-kvm built with the USB xHCI controller emulation support is vulnerable
to an infinite loop issue. It could occur while processing USB command ring
in xhci_ring_fetch. - CVE-2016-8577
qemu-kvm built with the virtio-9p back-end support is vulnerable to a memory
leakage issue. It could occur while doing a I/O read operation in
v9fs_read() routine. - CVE-2016-8578
qemu-kvm built with the virtio-9p back-end support is vulnerable to a null
pointer dereference issue. It could occur while doing an I/O vector
unmarshalling operation in v9fs_iov_vunmarshal() routine. - CVE-2016-8669
qemu-kvm built with the 16550A UART emulation support is vulnerable to a
divide by zero issue. It could occur while updating serial device parameters
in serial_update_parameters.
For Debian 7 Wheezy, these problems have been fixed in version
1.1.2+dfsg-6+deb7u17.
We recommend that you upgrade your qemu-kvm packages.
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: <https://wiki.debian.org/LTS>
References
Related
openvas
openvas
Debian: Security Advisory (DLA-678-1)
2023-03-08 00:00:00
Debian: Security Advisory (DLA-679-1)
2023-03-08 00:00:00
Fedora Update for xen FEDORA-2016-0d1a8ee35b
2016-12-02 00:00:00
nessus
nessus
Debian DLA-678-1 : qemu security update
2016-10-26 00:00:00
Debian DLA-679-1 : qemu-kvm security update
2016-10-26 00:00:00
Fedora 23 : xen (2016-da6b1d277b)
2016-11-11 00:00:00
debian
debian
[SECURITY] [DLA 678-1] qemu security update
2016-10-25 20:20:15
[SECURITY] [DLA 679-1] qemu-kvm security update
2016-10-25 20:22:03
[SECURITY] [DLA 1599-1] qemu security update
2018-11-30 14:28:32
osv
osv
qemu - security update
2016-10-25 00:00:00
CVE-2016-8576
2016-11-04 21:59:00
CVE-2016-8578
2016-11-04 21:59:00
cve
cve
cvelist
cvelist
ubuntucve
ubuntucve
debiancve
debiancve
alpinelinux
alpinelinux
prion
prion
Null pointer dereference
2016-11-04 21:59:00
Cross site request forgery (csrf)
2016-11-04 21:59:00
Memory corruption
2016-11-04 21:59:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 06:36:19
Denial Of Service (DoS) Through Divide By Zero
2019-05-02 06:36:20
nvd
nvd
ibm
ibm
Security Bulletin: Vulnerabilities in QEMU affect PowerKVM
2018-06-18 01:34:46
Security Bulletin: Vulnerabilities in Qemu affect PowerKVM
2018-06-18 01:35:35
fedora
fedora
[SECURITY] Fedora 24 Update: xen-4.6.3-7.fc24
2016-11-10 03:33:10
[SECURITY] Fedora 25 Update: xen-4.7.0-7.fc25
2016-11-19 21:36:03
[SECURITY] Fedora 23 Update: xen-4.5.5-3.fc23
2016-11-10 15:54:47
redhatcve
redhatcve
suse
suse
Security update for kvm (important)
2016-11-24 18:10:22
Security update for qemu (important)
2016-12-02 21:06:55
Security update for qemu (important)
2016-11-29 14:07:08
gentoo
gentoo
QEMU: Multiple vulnerabilities
2016-11-18 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2016-11-09 00:00:00
QEMU vulnerabilities
2017-04-20 00:00:00
redhat
redhat
(RHSA-2017:2392) Important: qemu-kvm-rhev security, bug fix, and enhancement update
2017-08-01 15:48:43
(RHSA-2017:2408) Moderate: qemu-kvm-rhev security and bug fix update
2017-08-01 20:47:32