CVE-2016-7157

The (1) mptsas_config_manufacturing_1 and (2) mptsas_config_ioc_0 functions in hw/scsi/mptconfig.c in QEMU (aka Quick Emulator) allow local guest OS administrators to cause a denial of service (QEMU process crash) via vectors involving MPTSAS_CONFIG_PACK.
Configurations

Configuration 1 (hide)

cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*

History

21 Nov 2024, 02:57

Type Values Removed Values Added
References () http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=65a8e1f6413a0f6f79894da710b5d6d43361d27d - () http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=65a8e1f6413a0f6f79894da710b5d6d43361d27d -
References () http://www.openwall.com/lists/oss-security/2016/09/06/4 - Mailing List, Third Party Advisory () http://www.openwall.com/lists/oss-security/2016/09/06/4 - Mailing List, Third Party Advisory
References () http://www.openwall.com/lists/oss-security/2016/09/07/3 - Mailing List, Third Party Advisory () http://www.openwall.com/lists/oss-security/2016/09/07/3 - Mailing List, Third Party Advisory
References () http://www.securityfocus.com/bid/92775 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/92775 - Third Party Advisory, VDB Entry
References () https://lists.gnu.org/archive/html/qemu-devel/2016-08/msg04295.html - Patch, Third Party Advisory () https://lists.gnu.org/archive/html/qemu-devel/2016-08/msg04295.html - Patch, Third Party Advisory
References () https://lists.gnu.org/archive/html/qemu-devel/2016-08/msg04296.html - Patch, Third Party Advisory () https://lists.gnu.org/archive/html/qemu-devel/2016-08/msg04296.html - Patch, Third Party Advisory
References () https://security.gentoo.org/glsa/201609-01 - Third Party Advisory () https://security.gentoo.org/glsa/201609-01 - Third Party Advisory

07 Nov 2023, 02:34

Type Values Removed Values Added
References
  • {'url': 'http://git.qemu.org/?p=qemu.git;a=commit;h=65a8e1f6413a0f6f79894da710b5d6d43361d27d', 'name': 'http://git.qemu.org/?p=qemu.git;a=commit;h=65a8e1f6413a0f6f79894da710b5d6d43361d27d', 'tags': ['Patch', 'Vendor Advisory'], 'refsource': 'CONFIRM'}
  • () http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=65a8e1f6413a0f6f79894da710b5d6d43361d27d -

Information

Published : 2016-12-10 00:59

Updated : 2024-11-21 02:57


NVD link : CVE-2016-7157

Mitre link : CVE-2016-7157

CVE.ORG link : CVE-2016-7157


JSON object : View

Products Affected

qemu

  • qemu