Lucene search

K

PRIOn knowledge basePRION:CVE-2016-5403

HistoryAug 02, 2016 - 4:59 p.m.

Design/Logic Flaw

2016-08-0216:59:00

PRIOn knowledge base

www.prio-n.com

8

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6.4 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

23.0%

The virtqueue_pop function in hw/virtio/virtio.c in QEMU allows local guest OS administrators to cause a denial of service (memory consumption and QEMU process crash) by submitting requests without waiting for completion.

CPENameOperatorVersion
ubuntu_linuxeq12.04
ubuntu_linuxeq16.04
ubuntu_linuxeq14.04
debian_linuxeq8.0
linuxeq6
linuxeq7
linuxeq5
vm_servereq3.4
qemule2.6.0
qemueq2.7.0 rc0

Rows per page:

1-10 of 381

References

rhn.redhat.com/errata/RHSA-2016-1585.html

rhn.redhat.com/errata/RHSA-2016-1586.html

rhn.redhat.com/errata/RHSA-2016-1606.html

rhn.redhat.com/errata/RHSA-2016-1607.html

rhn.redhat.com/errata/RHSA-2016-1652.html

rhn.redhat.com/errata/RHSA-2016-1653.html

rhn.redhat.com/errata/RHSA-2016-1654.html

rhn.redhat.com/errata/RHSA-2016-1655.html

rhn.redhat.com/errata/RHSA-2016-1756.html

rhn.redhat.com/errata/RHSA-2016-1763.html

rhn.redhat.com/errata/RHSA-2016-1943.html

www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html

www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html

www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

www.securityfocus.com/bid/92148

www.securitytracker.com/id/1036476

www.ubuntu.com/usn/USN-3047-1

www.ubuntu.com/usn/USN-3047-2

xenbits.xen.org/xsa/advisory-184.html

bugzilla.redhat.com/show_bug.cgi?id=1358359

lists.debian.org/debian-lts-announce/2019/09/msg00021.html

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6.4 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

23.0%

Related for PRION:CVE-2016-5403

nessus36 redhat11 debiancve1 openvas24 freebsd1 centos3 redhatcve1 veracode1 ubuntucve1 xen1 osv4 cve1 oraclelinux5 fedora2 ibm1 debian3 ubuntu3 suse8 mageia1