vulnerability

Oracle Linux: CVE-2016-2857: ELSA-2017-0309: qemu-kvm security and bug fix update (IMPORTANT) (Multiple Advisories)

Severity
3
CVSS
(AV:A/AC:H/Au:N/C:P/I:N/A:P)
Published
Feb 17, 2016
Added
Jan 18, 2017
Modified
Dec 5, 2024

Description

The net_checksum_calculate function in net/checksum.c in QEMU allows local guest OS users to cause a denial of service (out-of-bounds heap read and crash) via the payload length in a crafted packet.
An out-of-bounds read-access flaw was found in the QEMU emulator built with IP checksum routines. The flaw could occur when computing a TCP/UDP packet's checksum, because a QEMU function used the packet's payload length without checking against the data buffer's size. A user inside a guest could use this flaw to crash the QEMU process (denial of service).

Solution(s)

oracle-linux-upgrade-qemu-guest-agentoracle-linux-upgrade-qemu-imgoracle-linux-upgrade-qemu-kvmoracle-linux-upgrade-qemu-kvm-commonoracle-linux-upgrade-qemu-kvm-tools
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.