- EPSS 0.39%
- Veröffentlicht 09.12.2016 22:59:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
Memory leak in hw/net/eepro100.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption and QEMU process crash) by repeatedly unplugging an i8255x (PRO100) NIC device.
CVE-2016-1248
- EPSS 25.31%
- Veröffentlicht 23.11.2016 15:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of arbitrary code if a file with a specially crafted modeline is opened.
CVE-2016-9376
- EPSS 1.6%
- Veröffentlicht 17.11.2016 05:59:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the OpenFlow dissector could crash with memory exhaustion, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-openflow_v5.c by ensuring that certain length valu...
CVE-2016-9375
- EPSS 1.6%
- Veröffentlicht 17.11.2016 05:59:04
- Zuletzt bearbeitet 06.05.2026 22:30:45
In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the DTN dissector could go into an infinite loop, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-dtn.c by checking whether SDNV evaluation was successful.
CVE-2016-9374
- EPSS 1.6%
- Veröffentlicht 17.11.2016 05:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the AllJoyn dissector could crash with a buffer over-read, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-alljoyn.c by ensuring that a length variable prope...
CVE-2016-9373
- EPSS 1.72%
- Veröffentlicht 17.11.2016 05:59:01
- Zuletzt bearbeitet 06.05.2026 22:30:45
In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the DCERPC dissector could crash with a use-after-free, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-dcerpc-nt.c and epan/dissectors/packet-dcerpc-spoolss...
- EPSS 83.52%
- Veröffentlicht 10.11.2016 21:59:00
- Zuletzt bearbeitet 21.04.2026 17:43:46
Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-only memory mapping, as exploited in the wild in Oc...
- EPSS 0.41%
- Veröffentlicht 04.11.2016 21:59:10
- Zuletzt bearbeitet 06.05.2026 22:30:45
The rtl8139_cplus_transmit function in hw/net/rtl8139.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) by leveraging failure to limit the ring descriptor count.
- EPSS 0.44%
- Veröffentlicht 04.11.2016 21:59:09
- Zuletzt bearbeitet 06.05.2026 22:30:45
The intel_hda_xfer function in hw/audio/intel-hda.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) via an entry with the same value for buffer length and pointer posi...
- EPSS 0.36%
- Veröffentlicht 04.11.2016 21:59:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
The serial_update_parameters function in hw/char/serial.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (divide-by-zero error and QEMU process crash) via vectors involving a value of divider greater th...