Lucene search

Veracode Vulnerability DatabaseVERACODE:19219

HistoryMay 16, 2019 - 2:53 a.m.

Denial Of Service (DoS)

2019-05-1602:53:05

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

JSON

Qemu is vulnerable to denial of service attacks. A remote unauthenticated attacker could exploit a flawed functionality of the file io/channel-websock.c to cause system crash by triggering slow data-channel read operations.

CPENameOperatorVersion
qemu-kvm-rheveq2.6.0__28.el7_3.3
qemu-kvm-rheveq2.3.0__31.el7_2.16
qemu-kvm-rheveq2.3.0__31.el7_2.15
qemu-kvm-rheveq2.3.0__31.el7
qemu-kvm-rheveq2.9.0__14.el7
qemu-kvm-rheveq2.1.2__23.el7
qemu-kvm-rheveq2.9.0__16.el7_4.5
qemu-kvm-rheveq2.1.2__23.el7_1.10
qemu-kvm-rheveq2.3.0__31.el7_2.19
qemu-kvm-rheveq2.3.0__31.el7_2.21

Name	Operator	Version
qemu-kvm-rhev	eq	2.6.0__28.el7_3.3
qemu-kvm-rhev	eq	2.3.0__31.el7_2.16
qemu-kvm-rhev	eq	2.3.0__31.el7_2.15
qemu-kvm-rhev	eq	2.3.0__31.el7
qemu-kvm-rhev	eq	2.9.0__14.el7
qemu-kvm-rhev	eq	2.1.2__23.el7
qemu-kvm-rhev	eq	2.9.0__16.el7_4.5
qemu-kvm-rhev	eq	2.1.2__23.el7_1.10
qemu-kvm-rhev	eq	2.3.0__31.el7_2.19
qemu-kvm-rhev	eq	2.3.0__31.el7_2.21

Rows per page:

1-10 of 421

References

www.securityfocus.com/bid/101277

access.redhat.com/errata/RHSA-2018:0816

access.redhat.com/errata/RHSA-2018:1104

access.redhat.com/security/updates/classification/#important

bugs.launchpad.net/qemu/+bug/1718964

bugzilla.redhat.com/show_bug.cgi?id=1139507

bugzilla.redhat.com/show_bug.cgi?id=1178472

bugzilla.redhat.com/show_bug.cgi?id=1212715

bugzilla.redhat.com/show_bug.cgi?id=1213786

bugzilla.redhat.com/show_bug.cgi?id=1285044

bugzilla.redhat.com/show_bug.cgi?id=1305398

bugzilla.redhat.com/show_bug.cgi?id=1320114

bugzilla.redhat.com/show_bug.cgi?id=1344299

bugzilla.redhat.com/show_bug.cgi?id=1372583

bugzilla.redhat.com/show_bug.cgi?id=1378241

bugzilla.redhat.com/show_bug.cgi?id=1390346

bugzilla.redhat.com/show_bug.cgi?id=1390348

bugzilla.redhat.com/show_bug.cgi?id=1398633

bugzilla.redhat.com/show_bug.cgi?id=1406803

bugzilla.redhat.com/show_bug.cgi?id=1414049

bugzilla.redhat.com/show_bug.cgi?id=1433670

bugzilla.redhat.com/show_bug.cgi?id=1434321

bugzilla.redhat.com/show_bug.cgi?id=1437113

bugzilla.redhat.com/show_bug.cgi?id=1441460

bugzilla.redhat.com/show_bug.cgi?id=1441684

bugzilla.redhat.com/show_bug.cgi?id=1441938

bugzilla.redhat.com/show_bug.cgi?id=1443877

bugzilla.redhat.com/show_bug.cgi?id=1445834

bugzilla.redhat.com/show_bug.cgi?id=1446565

bugzilla.redhat.com/show_bug.cgi?id=1447258

bugzilla.redhat.com/show_bug.cgi?id=1447413

bugzilla.redhat.com/show_bug.cgi?id=1448344

bugzilla.redhat.com/show_bug.cgi?id=1449067

bugzilla.redhat.com/show_bug.cgi?id=1449609

bugzilla.redhat.com/show_bug.cgi?id=1449991

bugzilla.redhat.com/show_bug.cgi?id=1451015

bugzilla.redhat.com/show_bug.cgi?id=1451189

bugzilla.redhat.com/show_bug.cgi?id=1451269

bugzilla.redhat.com/show_bug.cgi?id=1453167

bugzilla.redhat.com/show_bug.cgi?id=1454362

bugzilla.redhat.com/show_bug.cgi?id=1454367

bugzilla.redhat.com/show_bug.cgi?id=1455074

bugzilla.redhat.com/show_bug.cgi?id=1457662

bugzilla.redhat.com/show_bug.cgi?id=1459906

bugzilla.redhat.com/show_bug.cgi?id=1459945

bugzilla.redhat.com/show_bug.cgi?id=1460119

bugzilla.redhat.com/show_bug.cgi?id=1460595

bugzilla.redhat.com/show_bug.cgi?id=1460848

bugzilla.redhat.com/show_bug.cgi?id=1462145

bugzilla.redhat.com/show_bug.cgi?id=1463172

bugzilla.redhat.com/show_bug.cgi?id=1464908

bugzilla.redhat.com/show_bug.cgi?id=1465799

bugzilla.redhat.com/show_bug.cgi?id=1468260

bugzilla.redhat.com/show_bug.cgi?id=1470634

bugzilla.redhat.com/show_bug.cgi?id=1472756

bugzilla.redhat.com/show_bug.cgi?id=1474464

bugzilla.redhat.com/show_bug.cgi?id=1475634

bugzilla.redhat.com/show_bug.cgi?id=1476121

bugzilla.redhat.com/show_bug.cgi?id=1481593

bugzilla.redhat.com/show_bug.cgi?id=1482478

bugzilla.redhat.com/show_bug.cgi?id=1489670

bugzilla.redhat.com/show_bug.cgi?id=1489800

bugzilla.redhat.com/show_bug.cgi?id=1491909

bugzilla.redhat.com/show_bug.cgi?id=1492178

bugzilla.redhat.com/show_bug.cgi?id=1492295

bugzilla.redhat.com/show_bug.cgi?id=1495090

bugzilla.redhat.com/show_bug.cgi?id=1495456

bugzilla.redhat.com/show_bug.cgi?id=1497120

bugzilla.redhat.com/show_bug.cgi?id=1497137

bugzilla.redhat.com/show_bug.cgi?id=1497740

bugzilla.redhat.com/show_bug.cgi?id=1498042

bugzilla.redhat.com/show_bug.cgi?id=1498496

bugzilla.redhat.com/show_bug.cgi?id=1498754

bugzilla.redhat.com/show_bug.cgi?id=1498817

bugzilla.redhat.com/show_bug.cgi?id=1498865

bugzilla.redhat.com/show_bug.cgi?id=1499011

bugzilla.redhat.com/show_bug.cgi?id=1499647

bugzilla.redhat.com/show_bug.cgi?id=1500181

bugzilla.redhat.com/show_bug.cgi?id=1500334

bugzilla.redhat.com/show_bug.cgi?id=1501240

bugzilla.redhat.com/show_bug.cgi?id=1501337

bugzilla.redhat.com/show_bug.cgi?id=1501468

bugzilla.redhat.com/show_bug.cgi?id=1502949

bugzilla.redhat.com/show_bug.cgi?id=1505654

bugzilla.redhat.com/show_bug.cgi?id=1505696

bugzilla.redhat.com/show_bug.cgi?id=1505701

bugzilla.redhat.com/show_bug.cgi?id=1506151

bugzilla.redhat.com/show_bug.cgi?id=1506531

bugzilla.redhat.com/show_bug.cgi?id=1506882

bugzilla.redhat.com/show_bug.cgi?id=1507693

bugzilla.redhat.com/show_bug.cgi?id=1508271

bugzilla.redhat.com/show_bug.cgi?id=1508799

bugzilla.redhat.com/show_bug.cgi?id=1508886

bugzilla.redhat.com/show_bug.cgi?id=1510809

bugzilla.redhat.com/show_bug.cgi?id=1511312

bugzilla.redhat.com/show_bug.cgi?id=1513870

bugzilla.redhat.com/show_bug.cgi?id=1515173

bugzilla.redhat.com/show_bug.cgi?id=1515393

bugzilla.redhat.com/show_bug.cgi?id=1515604

bugzilla.redhat.com/show_bug.cgi?id=1517144

bugzilla.redhat.com/show_bug.cgi?id=1518482

bugzilla.redhat.com/show_bug.cgi?id=1518649

bugzilla.redhat.com/show_bug.cgi?id=1519721

bugzilla.redhat.com/show_bug.cgi?id=1520294

bugzilla.redhat.com/show_bug.cgi?id=1520824

bugzilla.redhat.com/show_bug.cgi?id=1523414

bugzilla.redhat.com/show_bug.cgi?id=1525324

bugzilla.redhat.com/show_bug.cgi?id=1525868

bugzilla.redhat.com/show_bug.cgi?id=1526212

bugzilla.redhat.com/show_bug.cgi?id=1526423

bugzilla.redhat.com/show_bug.cgi?id=1528173

bugzilla.redhat.com/show_bug.cgi?id=1529053

bugzilla.redhat.com/show_bug.cgi?id=1529243

bugzilla.redhat.com/show_bug.cgi?id=1529676

bugzilla.redhat.com/show_bug.cgi?id=1534491

bugzilla.redhat.com/show_bug.cgi?id=1535752

bugzilla.redhat.com/show_bug.cgi?id=1535992

bugzilla.redhat.com/show_bug.cgi?id=1538494

bugzilla.redhat.com/show_bug.cgi?id=1538953

bugzilla.redhat.com/show_bug.cgi?id=1540003

bugzilla.redhat.com/show_bug.cgi?id=1540182

bugzilla.redhat.com/show_bug.cgi?id=1542045

lists.gnu.org/archive/html/qemu-devel/2017-10/msg02278.html

usn.ubuntu.com/3575-1/

www.debian.org/security/2018/dsa-4213

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

JSON

Related for VERACODE:19219