Lucene search

K
freebsdFreeBSD62AB8707-B1BC-11E5-9728-002590263BF5
HistoryDec 23, 2015 - 12:00 a.m.

qemu -- denial of service vulnerability in Human Monitor Interface support

2015-12-2300:00:00
vuxml.freebsd.org
8

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.008 Low

EPSS

Percentile

81.6%

Prasad J Pandit, Red Hat Product Security Team, reports:

Qemu emulator built with the Human Monitor Interface(HMP) support
is vulnerable to an OOB write issue. It occurs while processing
‘sendkey’ command in hmp_sendkey routine, if the command argument is
longer than the ‘keyname_buf’ buffer size.
A user/process could use this flaw to crash the Qemu process
instance resulting in DoS.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchqemu< 2.5.0UNKNOWN
FreeBSDanynoarchqemu-devel< 2.5.0UNKNOWN
FreeBSDanynoarchqemu-sbruno< 2.5.50.g20160213UNKNOWN
FreeBSDanynoarchqemu-user-static< 2.5.50.g20160213UNKNOWN

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.008 Low

EPSS

Percentile

81.6%

Related for 62AB8707-B1BC-11E5-9728-002590263BF5