CVE-2016-8668

Published: Nov 4, 2016

Modified: Aug 6, 2024

PUBLISHED

Description

The rocker_io_writel function in hw/net/rocker/rocker.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (out-of-bounds read and QEMU process crash) by leveraging failure to limit DMA buffer size.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20161015 Re: CVE request Qemu: net: OOB buffer access in rocker switch emulation

mailing-list

x_refsource_MLIST

GLSA-201611-11

vendor-advisory

x_refsource_GENTOO

[oss-security] 20161014 CVE request Qemu: net: OOB buffer access in rocker switch emulation

mailing-list

x_refsource_MLIST

[qemu-devel] 20161012 [PATCH] net: rocker: set limit to DMA buffer size

mailing-list

x_refsource_MLIST

openSUSE-SU-2016:3237

vendor-advisory

x_refsource_SUSE

93566

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-8668

Description

Affected Products

References