Denial Of Service (DoS)

2019-01-1509:26:12

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

8.2 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

JSON

QEMU is vulnerable to denial of service. A heap-based buffer overflow occurs in the Slirp networking back-end when reassembling fragmented datagrams. A privileged user/process inside guest could use this flaw to crash the QEMU process resulting in DoS or potentially leverage it to execute arbitrary code on the host with privileges of the QEMU process.

CPENameOperatorVersion
qemu-kvm-rheveq2.6.0__28.el7_3.3
qemu-kvm-rheveq2.3.0__31.el7_2.16
qemu-kvm-rheveq2.3.0__31.el7_2.15
qemu-kvm-rheveq2.3.0__31.el7
qemu-kvm-rheveq2.9.0__14.el7
qemu-kvm-rheveq2.6.0__28.el7_3.17
qemu-kvm-rheveq2.1.2__23.el7
qemu-kvm-rheveq2.9.0__16.el7_4.5
qemu-kvm-rheveq2.1.2__23.el7_1.10
qemu-kvm-rheveq2.3.0__31.el7_2.19

Name	Operator	Version
qemu-kvm-rhev	eq	2.6.0__28.el7_3.3
qemu-kvm-rhev	eq	2.3.0__31.el7_2.16
qemu-kvm-rhev	eq	2.3.0__31.el7_2.15
qemu-kvm-rhev	eq	2.3.0__31.el7
qemu-kvm-rhev	eq	2.9.0__14.el7
qemu-kvm-rhev	eq	2.6.0__28.el7_3.17
qemu-kvm-rhev	eq	2.1.2__23.el7
qemu-kvm-rhev	eq	2.9.0__16.el7_4.5
qemu-kvm-rhev	eq	2.1.2__23.el7_1.10
qemu-kvm-rhev	eq	2.3.0__31.el7_2.19