Lucene search
Veracode Vulnerability DatabaseVERACODE:26964HistorySep 21, 2020 - 6:27 a.m.
Denial Of Service (DoS)
2020-09-2106:27:43
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.001 Low
EPSS
Percentile
26.7%
QEMU is vulnerable to denial of service. An infinite loop occurs while receiving packets in mcf_fec_receive, allowing a privileged user/process inside guest to exploit the vulnerability to crash the QEMU process on the host.
| CPE | Name | Operator | Version |
|---|---|---|---|
| qemu:xenial | eq | 1:2.5+dfsg-5ubuntu10 |
References
www.openwall.com/lists/oss-security/2016/12/02/3
www.openwall.com/lists/oss-security/2016/12/02/8
www.securityfocus.com/bid/94638
bugzilla.redhat.com/show_bug.cgi?id=1400829
lists.debian.org/debian-lts-announce/2018/09/msg00007.html
lists.gnu.org/archive/html/qemu-devel/2016-11/msg05324.html
security.gentoo.org/glsa/201701-49
Related
cvelist
cvelist
CVE-2016-9776
2016-12-29 22:00:00
redhatcve
redhatcve
CVE-2016-9776
2016-12-05 07:17:29
debiancve
debiancve
CVE-2016-9776
2016-12-29 22:59:00
cve
cve
CVE-2016-9776
2016-12-29 22:59:00
ubuntucve
ubuntucve
CVE-2016-9776
2016-12-29 00:00:00
prion
prion
Code injection
2016-12-29 22:59:00
osv
osv
CVE-2016-9776
2016-12-29 22:59:00
qemu - security update
2018-09-06 00:00:00
nvd
nvd
CVE-2016-9776
2016-12-29 22:59:00
fedora
fedora
[SECURITY] Fedora 24 Update: xen-4.6.4-7.fc24
2017-02-26 00:21:09
[SECURITY] Fedora 25 Update: xen-4.7.1-7.fc25
2017-02-14 21:27:38
[SECURITY] Fedora 25 Update: qemu-2.7.1-2.fc25
2017-01-20 18:11:06
openvas
openvas
Fedora Update for xen FEDORA-2017-d4ee7018c1
2017-02-26 00:00:00
Fedora Update for xen FEDORA-2017-cdb53b04e0
2017-02-20 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:1135-1)
2021-06-09 00:00:00
nessus
nessus
Fedora 24 : xen (2017-d4ee7018c1)
2017-02-28 00:00:00
Fedora 25 : xen (2017-cdb53b04e0)
2017-02-15 00:00:00
SUSE SLES11 Security Update : kvm (SUSE-SU-2017:1135-1)
2017-05-01 00:00:00
suse
suse
Security update for kvm (important)
2017-04-28 21:11:21
Security update for qemu (important)
2017-03-10 21:09:01
Security update for qemu (important)
2017-05-11 15:09:39
gentoo
gentoo
QEMU: Multiple vulnerabilities
2017-01-23 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2017-04-20 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in Qemu affect PowerKVM
2018-06-18 01:35:35
debian
debian
[SECURITY] [DLA 1497-1] qemu security update
2018-09-06 18:49:12