Lucene search
PRIOn knowledge basePRION:CVE-2017-6058HistoryMar 20, 2017 - 4:59 p.m.
Buffer overflow
2017-03-2016:59:00
PRIOn knowledge base
www.prio-n.com
5
Buffer overflow in NetRxPkt::ehdr_buf in hw/net/net_rx_pkt.c in QEMU (aka Quick Emulator), when the VLANSTRIP feature is enabled on the vmxnet3 device, allows remote attackers to cause a denial of service (out-of-bounds access and QEMU process crash) via vectors related to VLAN stripping.
References
git.qemu-project.org/?p=qemu.git;a=commit;h=df8bf7a7fe75eb5d5caffa55f5cd4292b757aea6
www.openwall.com/lists/oss-security/2017/02/17/2
www.securityfocus.com/bid/96277
www.securitytracker.com/id/1037856
bugzilla.redhat.com/show_bug.cgi?id=1423358
lists.nongnu.org/archive/html/qemu-devel/2017-02/msg03527.html
security.gentoo.org/glsa/201704-01
Related
cvelist
cvelist
CVE-2017-6058
2017-03-20 16:00:00
ubuntucve
ubuntucve
CVE-2017-6058
2017-03-20 00:00:00
cve
cve
CVE-2017-6058
2017-03-20 16:59:02
debiancve
debiancve
CVE-2017-6058
2017-03-20 16:59:02
redhatcve
redhatcve
CVE-2017-6058
2017-02-17 07:50:45
osv
osv
CVE-2017-6058
2017-03-20 16:59:02
nvd
nvd
CVE-2017-6058
2017-03-20 16:59:02
gentoo
gentoo
QEMU: Multiple vulnerabilities
2017-04-10 00:00:00
nessus
nessus
GLSA-201704-01 : QEMU: Multiple vulnerabilities
2017-04-11 00:00:00
Oracle Linux 7 : qemu (ELSA-2019-4713) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)
2019-07-15 00:00:00
Fedora 25 : 2:qemu (2017-31b976672b)
2017-03-20 00:00:00
oraclelinux
oraclelinux
qemu security update
2019-07-10 00:00:00
qemu security update
2021-02-08 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: qemu-2.7.1-4.fc25
2017-03-18 20:00:53
openvas
openvas
Fedora Update for qemu FEDORA-2017-31b976672b
2017-03-19 00:00:00