Back to search
CVE-2016-4037
Published: May 23, 2016
Modified: Aug 6, 2024
PUBLISHED
Description
The ehci_advance_state function in hw/usb/hcd-ehci.c in QEMU allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) via a circular split isochronous transfer descriptor (siTD) list, a related issue to CVE-2015-8558.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20160418 Qemu: usb: Infinite loop vulnerability in usb_ehci using siTD process
mailing-list
x_refsource_MLIST
FEDORA-2016-48e72b7bc5
vendor-advisory
x_refsource_FEDORA
FEDORA-2016-35d7b09908
vendor-advisory
x_refsource_FEDORA
[qemu-devel] 20160418 [PATCH 1/2] ehci: apply limit to itd/sidt descriptors
mailing-list
x_refsource_MLIST
FEDORA-2016-75063477ca
vendor-advisory
x_refsource_FEDORA
USN-2974-1
vendor-advisory
x_refsource_UBUNTU
86283
vdb-entry
x_refsource_BID
[qemu-devel] 20160418 Re: [PATCH 1/2] ehci: apply limit to itd/sidt descriptors
mailing-list
x_refsource_MLIST
[debian-lts-announce] 20181130 [SECURITY] [DLA 1599-1] qemu security update
mailing-list
x_refsource_MLIST
[oss-security] 20160418 Re: Qemu: usb: Infinite loop vulnerability in usb_ehci using siTD process
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now