CVE-2016-6835
10.12.2016, 00:59
The vmxnet_tx_pkt_parse_headers function in hw/net/vmxnet_tx_pkt.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (buffer over-read) by leveraging failure to check IP header length.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| qemu | qemu | 𝑥 < 2.6.0 |
| redhat | virtualization | 4.0 |
| debian | debian_linux | 8.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||
|---|---|---|---|---|---|
| qemu |
| ||||
| qemu-block-curl |
| ||||
| qemu-block-rbd |
| ||||
| qemu-guest-agent |
| ||||
| qemu-ipxe |
| ||||
| qemu-kvm |
| ||||
| qemu-lang |
| ||||
| qemu-ppc |
| ||||
| qemu-s390 |
| ||||
| qemu-seabios |
| ||||
| qemu-sgabios-8 |
| ||||
| qemu-tools |
| ||||
| qemu-vgabios |
| ||||
| qemu-x86 |
|
References