Published: 17/11/2017 Updated: 10/09/2020

CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10

CVSS v3 Base Score: 10 | Impact Score: 5.8 | Exploitability Score: 3.9

VMScore: 570

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:P

hw/input/ps2.c in Qemu does not validate 'rptr' and 'count' values during guest migration, leading to out-of-bounds access.

Vulnerable Product	Search on Vulmon	Subscribe to Product
qemu qemu
debian debian linux 8.0
debian debian linux 9.0
canonical ubuntu linux 14.04
canonical ubuntu linux 16.04
canonical ubuntu linux 17.10
canonical ubuntu linux 18.04

Several security issues were fixed in QEMU ...

USN-3575-1 introduced a regression in QEMU ...

Several vulnerabilities were discovered in qemu, a fast processor emulator CVE-2017-15038 Tuomas Tynkkynen discovered an information leak in 9pfs CVE-2017-15119 Eric Blake discovered that the NBD server insufficiently restricts large option requests, resulting in denial of service CVE-2017-15124 Daniel Berrange discovered that t ...

Debian Bug report logs - #884806 qemu: CVE-2017-15124: memory exhaustion through framebuffer update request message in VNC server Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Tue, 19 Dec 2017 21:42:0 ...

Debian Bug report logs - #887392 qemu: CVE-2018-5683: Out-of-bounds read in vga_draw_text routine Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 15 Jan 2018 20:21:01 UTC Severity: important Tags: ...

Debian Bug report logs - #892041 qemu: CVE-2018-7550: i386: multiboot OOB access while loading kernel image Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 4 Mar 2018 13:15:12 UTC Severity: impor ...

Debian Bug report logs - #882136 qemu: CVE-2017-16845: ps2: information leakage via post_load routine Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 19 Nov 2017 14:21:04 UTC Severity: important T ...

Debian Bug report logs - #892497 qemu: CVE-2018-7858: cirrus: OOB access when updating vga display allowing for DoS Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 9 Mar 2018 18:12:01 UTC Severit ...

Debian Bug report logs - #886532 Coming updates for meltdown/spectre Package: qemu; Maintainer for qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Source for qemu is src:qemu (PTS, buildd, popcon) Reported by: Nigel Kukard <nkukard@lbsdnet> Date: Sun, 7 Jan 2018 12:15:02 UTC Severity: grave Fo ...

hw/input/ps2c in Qemu does not validate 'rptr' and 'count' values during guest migration, leading to out-of-bounds access ...

CWE-20 https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg02982.html http://www.securityfocus.com/bid/101923 https://usn.ubuntu.com/3575-1/https://usn.ubuntu.com/3649-1/https://www.debian.org/security/2018/dsa-4213 https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html https://nvd.nist.gov https://usn.ubuntu.com/3575-1/

Get Started

CVE-2017-16845

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect