Published: 09/12/2016 Updated: 14/12/2020

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 6 | Impact Score: 4 | Exploitability Score: 1.5

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P

Memory leak in hw/net/eepro100.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption and QEMU process crash) by repeatedly unplugging an i8255x (PRO100) NIC device.

Vulnerable Product	Search on Vulmon	Subscribe to Product
qemu qemu
opensuse leap 42.2
debian debian linux 8.0

Several security issues were fixed in QEMU ...

Debian Bug report logs - #851910 qemu: CVE-2017-5526 Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 19 Jan 2017 21:09:02 UTC Severity: normal Tags: patch, security, upstream Found in version qem ...

Debian Bug report logs - #852021 qemu: CVE-2017-5525 Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 20 Jan 2017 19:09:01 UTC Severity: normal Tags: patch, security, upstream Found in version qem ...

Debian Bug report logs - #842455 qemu: CVE-2016-9101: net: eepro100 memory leakage at device unplug Package: qemu; Maintainer for qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Source for qemu is src:qemu (PTS, buildd, popcon) Reported by: Guido Günther <agx@sigxcpuorg> Date: Sat, 29 Oct 2016 11 ...

Debian Bug report logs - #852119 qemu: CVE-2017-5552 Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 21 Jan 2017 19:12:04 UTC Severity: normal Tags: fixed-upstream, patch, security, upstream Foun ...

Debian Bug report logs - #849798 qemu: CVE-2016-10028: display: virtio-gpu-3d: OOB access while reading virgl capabilities Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 31 Dec 2016 06:51:01 UTC ...

Debian Bug report logs - #852232 qemu: CVE-2016-10155 Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 22 Jan 2017 18:51:01 UTC Severity: normal Tags: patch, security, upstream Found in version qe ...

Memory leak in hw/net/eepro100c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption and QEMU process crash) by repeatedly unplugging an i8255x (PRO100) NIC device ...

CWE-772 http://www.openwall.com/lists/oss-security/2016/10/30/5 https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg03024.html http://www.openwall.com/lists/oss-security/2016/10/27/14 http://www.securityfocus.com/bid/93957 http://lists.opensuse.org/opensuse-updates/2016-12/msg00140.html https://security.gentoo.org/glsa/201701-49 https://lists.debian.org/debian-lts-announce/2018/11/msg00038.html https://usn.ubuntu.com/3125-1/https://nvd.nist.gov

CVE-2016-9101

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect