hw/net/vmxnet3.c in QEMU 2.0.0-rc0, 1.7.1, and earlier allows local guest users to cause a denial of service or possibly execute arbitrary code via vectors related to (1) RX or (2) TX queue numbers or (3) interrupt indices. NOTE: some of these details are obtained from third party information.
CPE | Name | Operator | Version |
---|---|---|---|
ubuntu_linux | eq | 13.10 | |
ubuntu_linux | eq | 12.10 | |
ubuntu_linux | eq | 14.04 | |
ubuntu_linux | eq | 12.4 lts | |
ubuntu_linux | eq | 10.4 lts | |
qemu | eq | 1.0 rc1 | |
qemu | le | 1.7.1 | |
qemu | eq | 1.1 rc3 | |
qemu | eq | 1.6.0 | |
qemu | eq | 1.5.0 rc1 |
git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=3c99afc779c2c78718a565ad8c5e98de7c2c7484
git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=8c6c0478996e8f77374e69b6df68655b0b4ba689
git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=9878d173f574df74bde0ff50b2f81009fbee81bb
git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=f12d048a523780dbda702027d4a91b62af1a08d7
secunia.com/advisories/58191
thread.gmane.org/gmane.comp.emulators.qemu/265562
ubuntu.com/usn/usn-2182-1
www.osvdb.org/106013
bugzilla.redhat.com/show_bug.cgi?id=1087513