CVE-2016-9603

EPSS 1.52%
Published 27.07.2018 21:29:00
Last modified 21.11.2024 03:01:29
Source secalert@redhat.com
Teams watchlist Login
Open Login

A heap buffer overflow flaw was found in QEMU's Cirrus CLGD 54xx VGA emulator's VNC display driver support before 2.9; the issue could occur when a VNC client attempted to update its display after a VGA operation is performed by a guest. A privileged user/process inside a guest could use this flaw to crash the QEMU process or, potentially, execute arbitrary code on the host with privileges of the QEMU process.

Affected products Warnungen 0 Metrics 4 CWE 2 References 21

Data is provided by the National Vulnerability Database (NVD)

Qemu ≫ Qemu Version < 2.9.0

Citrix ≫ Xenserver Version6.0.2

Citrix ≫ Xenserver Version6.2.0 Updatesp1

Citrix ≫ Xenserver Version6.5 Updatesp1

Citrix ≫ Xenserver Version7.0

Citrix ≫ Xenserver Version7.1

Redhat ≫ Openstack Version5.0

Redhat ≫ Openstack Version6.0

Redhat ≫ Openstack Version7.0

Redhat ≫ Openstack Version8

Redhat ≫ Openstack Version9

Redhat ≫ Openstack Version10

Debian ≫ Debian Linux Version7.0

Redhat ≫ Enterprise Linux Desktop Version6.0

Redhat ≫ Enterprise Linux Desktop Version7.0

Redhat ≫ Enterprise Linux Server Version6.0

Redhat ≫ Enterprise Linux Server Version7.0

Redhat ≫ Enterprise Linux Server Aus Version7.3

Redhat ≫ Enterprise Linux Server Aus Version7.4

Redhat ≫ Enterprise Linux Server Eus Version7.3

Redhat ≫ Enterprise Linux Server Eus Version7.4

Redhat ≫ Enterprise Linux Server Eus Version7.5

Redhat ≫ Enterprise Linux Workstation Version6.0

Redhat ≫ Enterprise Linux Workstation Version7.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.52%	0.805

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.9	3.1	6	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
nvd@nist.gov	9	8	10	AV:N/AC:L/Au:S/C:C/I:C/A:C
secalert@redhat.com	5.5	1.3	3.7	CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

CWE-122 Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html

https://lists.debian.org/debian-lts-announce/2018/02/msg00005.html

Third Party Advisory

https://security.gentoo.org/glsa/201706-03

Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:0980

Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:0981

Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:0982

Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:0983