CVE-2018-17963

Published: Oct 9, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

qemu_deliver_packet_iov in net/net.c in Qemu accepts packet sizes greater than INT_MAX, which allows attackers to cause a denial of service or possibly have unspecified other impact.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20181008 Qemu: integer overflow issues

mailing-list

x_refsource_MLIST

DSA-4338

vendor-advisory

x_refsource_DEBIAN

[qemu-devel] 20180926 [PULL 24/25] net: ignore packet size greater than INT_MAX

mailing-list

x_refsource_MLIST

USN-3826-1

vendor-advisory

x_refsource_UBUNTU

[debian-lts-announce] 20181130 [SECURITY] [DLA 1599-1] qemu security update

mailing-list

x_refsource_MLIST

https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg06054.html

x_refsource_MISC

RHSA-2019:2166

vendor-advisory

x_refsource_REDHAT

RHSA-2019:2425

vendor-advisory

x_refsource_REDHAT

RHSA-2019:2553

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-17963

Description

Affected Products

References