5 matches found
CVE-2015-8567
CVE-2015-8567 describes a memory leak in the QEMU vmxnet3 device emulator (net/vmxnet3.c) that could allow a remote attacker to cause a denial of service via memory exhaustion. The vulnerability is part of multiple CVEs in QEMU; Debian security advisories report fixes in stable Jessie to version ...
CVE-2016-6836
CVE-2016-6836 : In QEMU, the vmxnet3_complete_packet path (hw/net/vmxnet3.c) allows local guest OS admins to obtain sensitive host memory information by exploiting failure to initialize the txcq_descr object, enabling information leakage. The IBM PowerKVM bulletin notes this vulnerability and sta...
CVE-2016-6836
The vmxnet3completepacket function in hw/net/vmxnet3.c in QEMU aka Quick Emulator allows local guest OS administrators to obtain sensitive host memory information by leveraging failure to initialize the txcqdescr object...
QEMU 'vmxnet3.c' Denial of Service Vulnerability
QEMU is a suite of analog processor software developed by French programmer Fabrice Bellard. A denial of service vulnerability exists in QEMU, which can be exploited by an attacker to cause a QEMU instance to crash, resulting in a denial of service...
Qemu 'vmxnet3.c'拒绝服务漏洞
Bugtraq ID:66955 CVE ID:CVE-2013-4544 QEMU是一款面向完整PC系统的开源仿真器。 QEMU 'vmxnet3.c'校验hw/net/vmxnet3.c中的中断和队列配置时存在多个错误,允许本地攻击者利用漏洞使系统崩溃。 0 Qemu 目前厂商已经发布了升级补丁以修复漏洞,请下载使用: https://github.com/qemu/qemu/commit/f12d048a523780dbda702027d4a91b62af1a08d7...