vulnerability

Ubuntu: (Multiple Advisories) (CVE-2017-9330): QEMU vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
2	(AV:L/AC:M/Au:N/C:N/I:N/A:P)	Jun 8, 2017	Sep 13, 2017	Mar 27, 2026

Severity

CVSS

(AV:L/AC:M/Au:N/C:N/I:N/A:P)

Published

Jun 8, 2017

Added

Sep 13, 2017

Modified

Mar 27, 2026

Description

QEMU (aka Quick Emulator) before 2.9.0, when built with the USB OHCI Emulation support, allows local guest OS users to cause a denial of service (infinite loop) by leveraging an incorrect return value, a different vulnerability than CVE-2017-6505.

Solutions

ubuntu-upgrade-qemu-systemubuntu-upgrade-qemu-system-aarch64ubuntu-upgrade-qemu-system-armubuntu-upgrade-qemu-system-mipsubuntu-upgrade-qemu-system-miscubuntu-upgrade-qemu-system-ppcubuntu-upgrade-qemu-system-s390xubuntu-upgrade-qemu-system-sparcubuntu-upgrade-qemu-system-x86

References

CVE-2017-9330
https://attackerkb.com/topics/CVE-2017-9330
CWE-835
DEBIAN-DSA-3920
EUVD-EUVD-2017-18265
NVD-CVE-2017-9330
UBUNTU-USN-3414-1
UBUNTU-USN-3414-2
https://euvd.enisa.europa.eu/vulnerability/EUVD-2017-18265

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today