4 matches found
SUSE CVE-2016-4441
The getcmd function in hw/scsi/esp.c in the 53C9X Fast SCSI Controller FSC support in QEMU does not properly check DMA length, which allows local guest OS administrators to cause a denial of service out-of-bounds write and QEMU process crash via unspecified vectors, involving an SCSI command...
DEBIAN-CVE-2016-6351
The espdodma function in hw/scsi/esp.c in QEMU aka Quick Emulator, when built with ESP/NCR53C9x controller emulation support, allows local guest OS administrators to cause a denial of service out-of-bounds write and QEMU process crash or execute arbitrary code on the QEMU host via vectors involvi...
UBUNTU-CVE-2016-6351
The espdodma function in hw/scsi/esp.c in QEMU aka Quick Emulator, when built with ESP/NCR53C9x controller emulation support, allows local guest OS administrators to cause a denial of service out-of-bounds write and QEMU process crash or execute arbitrary code on the QEMU host via vectors involvi...
QEMU Denial of Service Vulnerability (CNVD-2016-03443)
QEMU is a suite of analog processor software. A security vulnerability in the esp.c file in QEMU's scsi when the program uses the ESP/NCR53C9x controller emulation support allows attackers to conduct denial-of-service attacks exploiting this vulnerability...