Back to search
CVE-2017-17381
Published: Dec 6, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
The Virtio Vring implementation in QEMU allows local OS guest users to cause a denial of service (divide-by-zero error and QEMU process crash) by unsetting vring alignment while updating Virtio rings.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20171205 CVE-2017-17381 Qemu: virtio: divide by zero exception while updating rings
mailing-list
x_refsource_MLIST
DSA-4213
vendor-advisory
x_refsource_DEBIAN
102059
vdb-entry
x_refsource_BID
USN-3575-1
vendor-advisory
x_refsource_UBUNTU
[qemu-devel] 20171201 [PULL 6/7] virtio: check VirtQueue Vring object is set
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now