7 matches found
Fedora 25 : 2:qemu (2016-3d3218ec41)
CVE-2016-7155: pvscsi: OOB read and infinite loop bz 1373463 - CVE-2016-7156: pvscsi: infinite loop when building SG list bz 1373480 - CVE-2016-7156: pvscsi: infinite loop when processing IO requests bz 1373480 - CVE-2016-7170: vmwarevga: OOB stack memory access bz 1374709 - CVE-2016-7157:...
Qemu mcf_fec_do_tx Denial of Service Vulnerability
QEMU is a simulation processor software developed by French programmer Fabrice Bellard. The software is fast and cross-platform. A denial of service vulnerability exists in mcffecdotx in QEMU, which can be exploited by an attacker with privileges to launch a DoS attack and cause QEMU to crash...
CVE-2016-7908
The mcffecdotx function in hw/net/mcffec.c in QEMU aka Quick Emulator does not properly limit the buffer descriptor count when transmitting packets, which allows local guest OS administrators to cause a denial of service infinite loop and QEMU process crash via vectors involving a buffer descript...
Design/Logic Flaw
The mcffecdotx function in hw/net/mcffec.c in QEMU aka Quick Emulator does not properly limit the buffer descriptor count when transmitting packets, which allows local guest OS administrators to cause a denial of service infinite loop and QEMU process crash via vectors involving a buffer descript...
CVE-2016-7908
CVE-2016-7908 refers to a DoS in QEMU where the mcf_fec_do_tx path does not properly cap the buffer descriptor count during transmit. A local guest administrator can trigger an infinite loop and QEMU process crash by crafting a 0-length BD with specific bd.flags values. Public listings (Debian se...
CVE-2016-7908
The mcffecdotx function in hw/net/mcffec.c in QEMU aka Quick Emulator does not properly limit the buffer descriptor count when transmitting packets, which allows local guest OS administrators to cause a denial of service infinite loop and QEMU process crash via vectors involving a buffer descript...
CVE-2016-7908
The mcffecdotx function in hw/net/mcffec.c in QEMU aka Quick Emulator does not properly limit the buffer descriptor count when transmitting packets, which allows local guest OS administrators to cause a denial of service infinite loop and QEMU process crash via vectors involving a buffer descript...