Lucene search

K

Veracode Vulnerability DatabaseVERACODE:12375

HistoryJan 15, 2019 - 9:16 a.m.

Denial Of Service (DoS)

2019-01-1509:16:25

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

7

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

QEMU is vulnearble to denial of service. An integer overflow flaw and an out-of-bounds read flaw were found in the way QEMU’s VGA emulator set certain VGA registers while in VBE mode. A privileged guest user could use this flaw to crash the QEMU process instance.

CPENameOperatorVersion
qemu-kvmeq0.12.1.2__2.160.el6_1.3
qemu-kvmeq0.12.1.2__2.113.el6_0.6
qemu-kvmeq0.12.1.2__2.160.el6_1.9
qemu-kvmeq0.12.1.2__2.415.el6_5.3
qemu-kvmeq0.12.1.2__2.355.el6_4.5
qemu-kvmeq0.12.1.2__2.209.el6_2.4
qemu-kvmeq0.12.1.2__2.355.el6_4.6
qemu-kvmeq0.12.1.2__2.160.el6_1.2
qemu-kvmeq0.12.1.2__2.479.el6
qemu-kvmeq0.12.1.2__2.295.el6_3.8

Rows per page:

1-10 of 1061

References

rhn.redhat.com/errata/RHSA-2016-2585.html

rhn.redhat.com/errata/RHSA-2017-0621.html

support.citrix.com/article/CTX212736

www.debian.org/security/2016/dsa-3573

www.openwall.com/lists/oss-security/2016/05/09/4

www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

www.securityfocus.com/bid/90314

www.securitytracker.com/id/1035794

www.ubuntu.com/usn/USN-2974-1

xenbits.xen.org/xsa/advisory-179.html

access.redhat.com/errata/RHSA-2016:2585

access.redhat.com/errata/RHSA-2017:0621

access.redhat.com/security/cve/CVE-2016-3712

access.redhat.com/security/updates/classification/#moderate

bugzilla.redhat.com/show_bug.cgi?id=1281713

bugzilla.redhat.com/show_bug.cgi?id=1292678

bugzilla.redhat.com/show_bug.cgi?id=1294941

bugzilla.redhat.com/show_bug.cgi?id=1297653

bugzilla.redhat.com/show_bug.cgi?id=1300626

bugzilla.redhat.com/show_bug.cgi?id=1318712

bugzilla.redhat.com/show_bug.cgi?id=1320066

bugzilla.redhat.com/show_bug.cgi?id=1333697

bugzilla.redhat.com/show_bug.cgi?id=1346981

bugzilla.redhat.com/show_bug.cgi?id=1356924

bugzilla.redhat.com/show_bug.cgi?id=1361490

bugzilla.redhat.com/show_bug.cgi?id=1392287

bugzilla.redhat.com/show_bug.cgi?id=1392520

bugzilla.redhat.com/show_bug.cgi?id=876993

lists.gnu.org/archive/html/qemu-devel/2016-05/msg01196.html

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

Related for VERACODE:12375

nessus37 debiancve1 cve1 prion1 centos2 redhat2 openvas27 ubuntucve1 osv4 fedora5 debian5 freebsd1 xen1 oraclelinux4 citrix1 archlinux2 ubuntu1 mageia2 suse9