Back to search
CVE-2016-10028
Published: Feb 27, 2017
Modified: Aug 6, 2024
PUBLISHED
Description
The virgl_cmd_get_capset function in hw/display/virtio-gpu-3d.c in QEMU (aka Quick Emulator) built with Virtio GPU Device emulator support allows local guest OS users to cause a denial of service (out-of-bounds read and process crash) via a VIRTIO_GPU_CMD_GET_CAPSET command with a maximum capabilities size with a value of 0.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1037525
vdb-entry
x_refsource_SECTRACK
94981
vdb-entry
x_refsource_BID
GLSA-201701-49
vendor-advisory
x_refsource_GENTOO
[qemu-devel] 20161214 [PATCH] display: virtio-gpu-3d: check virgl capabilities max_size
mailing-list
x_refsource_MLIST
[oss-security] 20161220 CVE request Qemu: display: virtio-gpu-3d: OOB access while reading virgl capabilities
mailing-list
x_refsource_MLIST
[oss-security] 20161222 Re: CVE request Qemu: display: virtio-gpu-3d: OOB access while reading virgl capabilities
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now