Back to search
CVE-2016-7909
Published: Oct 5, 2016
Modified: Aug 6, 2024
PUBLISHED
Description
The pcnet_rdra_addr function in hw/net/pcnet.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) by setting the (1) receive or (2) transmit descriptor ring length to 0.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
93275
vdb-entry
x_refsource_BID
GLSA-201611-11
vendor-advisory
x_refsource_GENTOO
[oss-security] 20161003 Re: CVE Request Qemu: net: pcnet: infinite loop in pcnet_rdra_addr
mailing-list
x_refsource_MLIST
[oss-security] 20161003 CVE Request Qemu: net: pcnet: infinite loop in pcnet_rdra_addr
mailing-list
x_refsource_MLIST
openSUSE-SU-2016:3237
vendor-advisory
x_refsource_SUSE
[debian-lts-announce] 20181130 [SECURITY] [DLA 1599-1] qemu security update
mailing-list
x_refsource_MLIST
[qemu-devel] 20160930 [PATCH 1/2] net: pcnet: check rx/tx descriptor ring length
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now