CVE-2017-6058

2017-03-20T16:59:00
ID CVE-2017-6058
Type cve
Reporter cve@mitre.org
Modified 2017-07-01T01:30:00

Description

Buffer overflow in NetRxPkt::ehdr_buf in hw/net/net_rx_pkt.c in QEMU (aka Quick Emulator), when the VLANSTRIP feature is enabled on the vmxnet3 device, allows remote attackers to cause a denial of service (out-of-bounds access and QEMU process crash) via vectors related to VLAN stripping.