CVE-2016-2857
12.04.2016, 02:00
The net_checksum_calculate function in net/checksum.c in QEMU allows local guest OS users to cause a denial of service (out-of-bounds heap read and crash) via the payload length in a crafted packet.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| qemu | qemu | 𝑥 ≤ 2.5.1.1 |
| canonical | ubuntu_linux | 12.04 |
| canonical | ubuntu_linux | 14.04 |
| canonical | ubuntu_linux | 15.10 |
| canonical | ubuntu_linux | 16.04 |
| debian | debian_linux | 8.0 |
| redhat | openstack | 5.0 |
| redhat | virtualization | 3.0 |
| redhat | virtualization | 4.0 |
| redhat | openstack | 5.0 |
| redhat | virtualization | 3.0 |
| redhat | openstack | 6.0 |
| redhat | openstack | 7.0 |
| redhat | enterprise_linux_desktop | 6.0 |
| redhat | enterprise_linux_desktop | 7.0 |
| redhat | enterprise_linux_eus | 7.3 |
| redhat | enterprise_linux_eus | 7.4 |
| redhat | enterprise_linux_eus | 7.5 |
| redhat | enterprise_linux_eus | 7.6 |
| redhat | enterprise_linux_eus | 7.7 |
| redhat | enterprise_linux_server | 6.0 |
| redhat | enterprise_linux_server | 7.0 |
| redhat | enterprise_linux_server_aus | 7.3 |
| redhat | enterprise_linux_server_aus | 7.4 |
| redhat | enterprise_linux_server_aus | 7.6 |
| redhat | enterprise_linux_server_aus | 7.7 |
| redhat | enterprise_linux_server_tus | 7.3 |
| redhat | enterprise_linux_server_tus | 7.6 |
| redhat | enterprise_linux_server_tus | 7.7 |
| redhat | enterprise_linux_workstation | 6.0 |
| redhat | enterprise_linux_workstation | 7.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||
|---|---|---|---|---|---|---|---|---|---|
| qemu |
| ||||||||
| qemu-block-curl |
| ||||||||
| qemu-block-rbd |
| ||||||||
| qemu-guest-agent |
| ||||||||
| qemu-ipxe |
| ||||||||
| qemu-kvm |
| ||||||||
| qemu-lang |
| ||||||||
| qemu-ppc |
| ||||||||
| qemu-s390 |
| ||||||||
| qemu-seabios |
| ||||||||
| qemu-sgabios-8 |
| ||||||||
| qemu-tools |
| ||||||||
| qemu-vgabios |
| ||||||||
| qemu-x86 |
|
Red Hat Enterprise Linux Releases
Red Hat Product | |||||
|---|---|---|---|---|---|
| qemu-guest-agent |
| ||||
| qemu-img |
| ||||
| qemu-kvm |
| ||||
| qemu-kvm-common |
| ||||
| qemu-kvm-tools |
|
Common Weakness Enumeration
References