Back to search
CVE-2016-9846
Published: Dec 29, 2016
Modified: Aug 6, 2024
PUBLISHED
Description
QEMU (aka Quick Emulator) built with the Virtio GPU Device emulator support is vulnerable to a memory leakage issue. It could occur while updating the cursor data in update_cursor_data_virgl. A guest user/process could use this flaw to leak host memory bytes, resulting in DoS for a host.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20161205 Re: CVE request Qemu: display: virtio-gpu: memory leakage while updating cursor
mailing-list
x_refsource_MLIST
[oss-security] 20161205 CVE request Qemu: display: virtio-gpu: memory leakage while updating cursor
mailing-list
x_refsource_MLIST
GLSA-201701-49
vendor-advisory
x_refsource_GENTOO
[qemu-devel] 20161101 [PATCH] virtio-gpu: fix memory leak in update_cursor_data_virgl
mailing-list
x_refsource_MLIST
94765
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now