Vulnerability & Exploit Database

Displaying all 4 entries

Results for: CVE-2016-7907 Back to search

Debian: CVE-2016-9602: qemu-kvm - security update Vulnerability

  • Severity: 9
  • Published: April 20, 2017

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From USN-3261-1:

Zhenhao Hong discovered that QEMU incorrectly handled the Virtio GPU device. An attacker inside the guest could use this issue to cause QEMU t...

Ubuntu: USN-3261-1 (CVE-2016-7907): QEMU vulnerabilities Vulnerability

  • Severity: 2
  • Published: October 05, 2016

The imx_fec_do_tx function in hw/net/imx_fec.c in QEMU (aka Quick Emulator) does not properly limit the buffer descriptor count when transmitting packets, which allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) via vectors involving a buffer descriptor with a length of 0 and crafted ...

SUSE: CVE-2016-7907: SUSE Linux Security Advisory Vulnerability

  • Severity: 2
  • Published: October 05, 2016

The imx_fec_do_tx function in hw/net/imx_fec.c in QEMU (aka Quick Emulator) does not properly limit the buffer descriptor count when transmitting packets, which allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) via vectors involving a buffer descriptor with a length of 0 and crafted ...

Gentoo Linux: CVE-2016-7907: QEMU: Multiple vulnerabilities Vulnerability

  • Severity: 2
  • Published: October 05, 2016

The imx_fec_do_tx function in hw/net/imx_fec.c in QEMU (aka Quick Emulator) does not properly limit the buffer descriptor count when transmitting packets, which allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) via vectors involving a buffer descriptor with a length of 0 and crafted ...