Back to search
CVE-2017-5898
Published: Mar 15, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
Integer overflow in the emulated_apdu_from_guest function in usb/dev-smartcard-reader.c in Quick Emulator (Qemu), when built with the CCID Card device emulator support, allows local users to cause a denial of service (application crash) via a large Application Protocol Data Units (APDU) unit.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
SUSE-SU-2017:0582
vendor-advisory
x_refsource_SUSE
[oss-security] 20170207 Re: CVE request Qemu: usb: integer overflow in emulated_apdu_from_guest
mailing-list
x_refsource_MLIST
RHSA-2017:2392
vendor-advisory
x_refsource_REDHAT
GLSA-201702-28
vendor-advisory
x_refsource_GENTOO
SUSE-SU-2017:0570
vendor-advisory
x_refsource_SUSE
96112
vdb-entry
x_refsource_BID
https://bugzilla.redhat.com/show_bug.cgi?id=1419699
x_refsource_CONFIRM
RHSA-2017:1856
vendor-advisory
x_refsource_REDHAT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now