Published: 06/12/2018 Updated: 14/12/2020

CVSS v2 Base Score: 2.7 | Impact Score: 2.9 | Exploitability Score: 5.1

CVSS v3 Base Score: 5.7 | Impact Score: 3.6 | Exploitability Score: 2.1

VMScore: 240

Vector: AV:A/AC:L/Au:S/C:N/I:N/A:P

The Bluetooth subsystem in QEMU mishandles negative values for length variables, leading to memory corruption.

Vulnerable Product	Search on Vulmon	Subscribe to Product
qemu qemu
qemu qemu 3.1.0
opensuse leap 42.3

Debian Bug report logs - #912655 qemu: CVE-2018-16847: Out-of-bounds r/w buffer access in cmb operations Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 2 Nov 2018 12:45:02 UTC Severity: importan ...

Debian Bug report logs - #916397 qemu: CVE-2018-16872: usb-mtp: path traversal by host filesystem manipulation in Media Transfer Protocol (MTP) Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 13 D ...

Debian Bug report logs - #916278 qemu: CVE-2018-19665 Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 12 Dec 2018 14:12:02 UTC Severity: important Tags: security, upstream Found in version qemu/1 ...

CWE-190 https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg03570.html http://www.securityfocus.com/bid/106050 http://www.openwall.com/lists/oss-security/2018/11/29/1 http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00072.html https://nvd.nist.gov https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912655

CVE-2018-19665

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect