5

CVE-2016-2391

The ohci_bus_start function in the USB OHCI emulation support (hw/usb/hcd-ohci.c) in QEMU allows local guest OS administrators to cause a denial of service (NULL pointer dereference and QEMU process crash) via vectors related to multiple eof_timers.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
QemuQemu Version <= 2.5.1.1
CanonicalUbuntu Linux Version12.04 SwEditionesm
CanonicalUbuntu Linux Version14.04 SwEditionesm
CanonicalUbuntu Linux Version15.10
CanonicalUbuntu Linux Version16.04 SwEditionlts
DebianDebian Linux Version8.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.4% 0.316
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 1.3 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:N/I:N/A:P
CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

http://www.ubuntu.com/usn/USN-2974-1
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2018/11/msg00038.html
Third Party Advisory
Mailing List
http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=fa1298c2d623522eda7b4f1f721fcb935abb7360
http://www.openwall.com/lists/oss-security/2016/02/16/2
Third Party Advisory
Mailing List
http://www.securityfocus.com/bid/83263
Third Party Advisory
VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1304794
Patch
Third Party Advisory
Issue Tracking
https://lists.gnu.org/archive/html/qemu-devel/2016-02/msg03374.html
Patch
Third Party Advisory