oss-sec mailing list archives
CVE request Qemu: char: use after free issue in char backend
From: P J P <ppandit () redhat com>
Date: Thu, 8 Dec 2016 17:13:36 +0530 (IST)
Hello,Quick Emulator(Qemu) built with the 'chardev' backend support is vulnerable to a use after free issue. It could occur while hotplug and unplugging the device in the guest.
A guest user/process could use this flaw to crash a Qemu process on the host resulting in DoS.
Upstream patch: --------------- -> https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg05597.html Thank you -- Prasad J Pandit / Red Hat Product Security Team 47AF CE69 3A90 54AA 9045 1053 DD13 3D32 FE5B 041F
Current thread:
- CVE request Qemu: char: use after free issue in char backend P J P (Dec 08)
- Re: CVE request Qemu: char: use after free issue in char backend cve-assign (Dec 08)