Lucene search
PRIOn knowledge basePRION:CVE-2016-9103HistoryDec 09, 2016 - 10:59 p.m.
Design/Logic Flaw
2016-12-0922:59:00
PRIOn knowledge base
www.prio-n.com
4
The v9fs_xattrcreate function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS administrators to obtain sensitive host heap memory information by reading xattribute values before writing to them.
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian_linux | eq | 8.0 | |
| qemu | le | 2.7.1 |
References
git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=eb687602853b4ae656e9236ee4222609f3a6887d
www.openwall.com/lists/oss-security/2016/10/28/1
www.openwall.com/lists/oss-security/2016/10/30/7
www.securityfocus.com/bid/93955
lists.debian.org/debian-lts-announce/2018/11/msg00038.html
lists.gnu.org/archive/html/qemu-devel/2016-10/msg01790.html
security.gentoo.org/glsa/201611-11
Related
nvd
nvd
CVE-2016-9103
2016-12-09 22:59:09
cve
cve
CVE-2016-9103
2016-12-09 22:59:09
ubuntucve
ubuntucve
CVE-2016-9103
2016-10-31 00:00:00
debiancve
debiancve
CVE-2016-9103
2016-12-09 22:59:09
alpinelinux
alpinelinux
CVE-2016-9103
2016-12-09 22:59:09
osv
osv
CVE-2016-9103
2016-12-09 22:59:00
qemu - security update
2016-11-03 00:00:00
qemu-kvm - security update
2016-10-30 00:00:00
redhatcve
redhatcve
CVE-2016-9103
2016-10-31 15:17:42
cvelist
cvelist
CVE-2016-9103
2016-12-09 22:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: xen-4.7.0-7.fc25
2016-11-19 21:36:03
[SECURITY] Fedora 23 Update: xen-4.5.5-3.fc23
2016-11-10 15:54:47
[SECURITY] Fedora 24 Update: xen-4.6.3-7.fc24
2016-11-10 03:33:10
debian
debian
[SECURITY] [DLA 698-1] qemu security update
2016-11-03 14:43:45
[SECURITY] [DLA 1599-1] qemu security update
2018-11-30 14:28:32
openvas
openvas
Debian: Security Advisory (DLA-698-1)
2023-03-08 00:00:00
Fedora Update for xen FEDORA-2016-7b6fbff620
2016-12-07 00:00:00
Fedora Update for xen FEDORA-2016-da6b1d277b
2016-12-02 00:00:00
nessus
nessus
Fedora 25 : xen (2016-7b6fbff620)
2016-11-21 00:00:00
Fedora 24 : xen (2016-0d1a8ee35b)
2016-11-10 00:00:00
Debian DLA-698-1 : qemu security update
2016-11-04 00:00:00
suse
suse
Security update for qemu (important)
2017-01-18 12:09:49
Security update for qemu (important)
2017-01-13 20:10:25
Security update for kvm (important)
2016-11-24 18:10:22
gentoo
gentoo
QEMU: Multiple vulnerabilities
2016-11-18 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2016-11-09 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in Qemu affect PowerKVM
2018-06-18 01:35:35