Published: 26/02/2014 Updated: 13/02/2023

CVSS v2 Base Score: 6.8 | Impact Score: 10 | Exploitability Score: 3.2

VMScore: 605

Vector: AV:A/AC:H/Au:N/C:C/I:C/A:C

Subscribe to Enterprise Linux Server Supplementary

Buffer overflow in the ccid_card_vscard_handle_message function in hw/ccid-card-passthru.c in QEMU prior to 0.15.2 and 1.x prior to 1.0-rc4 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted VSC_ATR message.

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat enterprise linux server supplementary 6.1.z
redhat enterprise linux 6.0
qemu qemu 1.0
qemu qemu 0.15.0
qemu qemu

Synopsis Important: qemu-kvm security update Type/Severity Security Advisory: Important Topic Updated qemu-kvm packages that fix one security issue are now available forRed Hat Enterprise Linux 61 Extended Update SupportThe Red Hat Security Response Team has rated this update as havingimportant security i ...

Synopsis Important: qemu-kvm security update Type/Severity Security Advisory: Important Topic Updated qemu-kvm packages that fix one security issue are now available forRed Hat Enterprise Linux 6The Red Hat Security Response Team has rated this update as havingimportant security impact A Common Vulnerabil ...

CWE-119 https://bugzilla.redhat.com/show_bug.cgi?id=751310 http://rhn.redhat.com/errata/RHSA-2011-1801.html http://rhn.redhat.com/errata/RHSA-2011-1777.html http://git.qemu.org/?p=qemu-stable-0.15.git%3Ba=log http://git.qemu.org/?p=qemu.git%3Ba=log%3Bh=refs/heads/stable-1.0 https://access.redhat.com/errata/RHSA-2011:1801 https://nvd.nist.gov

CVE-2011-4111

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect