5.5

CVE-2016-1981

QEMU (aka Quick Emulator) built with the e1000 NIC emulation support is vulnerable to an infinite loop issue. It could occur while processing data via transmit or receive descriptors, provided the initial receive/transmit descriptor head (TDH/RDH) is set outside the allocated descriptor buffer. A privileged user inside guest could use this flaw to crash the QEMU instance resulting in DoS.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
QemuQemu Version <= 2.5.1.1
DebianDebian Linux Version7.0
DebianDebian Linux Version8.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.44% 0.352
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:N/I:N/A:P
CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')

The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.

http://www.debian.org/security/2016/dsa-3469
Third Party Advisory
http://www.debian.org/security/2016/dsa-3470
Third Party Advisory
http://www.debian.org/security/2016/dsa-3471
Third Party Advisory
https://security.gentoo.org/glsa/201604-01
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-2585.html
Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/01/19/10
Third Party Advisory
Mailing List
http://www.openwall.com/lists/oss-security/2016/01/22/1
Third Party Advisory
Mailing List
http://www.securityfocus.com/bid/81549
Third Party Advisory
VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1298570
Issue Tracking
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg03454.html
Patch
Vendor Advisory