Vulnerability Description
The virtqueue_map_desc function in hw/virtio/virtio.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) via a zero length for the descriptor buffer.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qemu | Qemu | <= 2.6.2 |
Related Weaknesses (CWE)
References
- http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=1e7aed70144b4673fc26e73062064b672
- http://www.openwall.com/lists/oss-security/2016/07/28/4Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2016/07/28/9Mailing ListThird Party Advisory
- https://lists.gnu.org/archive/html/qemu-devel/2016-07/msg06246.htmlPatchThird Party Advisory
- https://security.gentoo.org/glsa/201609-01Third Party Advisory
- http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=1e7aed70144b4673fc26e73062064b672
- http://www.openwall.com/lists/oss-security/2016/07/28/4Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2016/07/28/9Mailing ListThird Party Advisory
- https://lists.gnu.org/archive/html/qemu-devel/2016-07/msg06246.htmlPatchThird Party Advisory
- https://security.gentoo.org/glsa/201609-01Third Party Advisory
FAQ
What is CVE-2016-6490?
CVE-2016-6490 is a vulnerability with a CVSS score of 4.4 (MEDIUM). The virtqueue_map_desc function in hw/virtio/virtio.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) via a zero l...
How severe is CVE-2016-6490?
CVE-2016-6490 has been rated MEDIUM with a CVSS base score of 4.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-6490?
Check the references section above for vendor advisories and patch information. Affected products include: Qemu Qemu.