CVE-2016-2858

Published: 7 April 2016

QEMU, when built with the Pseudo Random Number Generator (PRNG) back-end support, allows local guest OS users to cause a denial of service (process crash) via an entropy request, which triggers arbitrary stack based allocation and memory corruption.

Notes

Author	Note
mdeslaur	introduced in 1.3.0-rc0 by http://git.qemu.org/?p=qemu.git;a=commit;h=a9b7b2ad7b075dba5495271706670e5c6b1304bc

Priority

Cvss 3 Severity Score

6.5

Score breakdown

Status

Package	Release	Status
qemu Launchpad, Ubuntu, Debian	precise	Does not exist
	trusty	Released (2.0.0+dfsg-2ubuntu1.24)
	upstream	Needs triage
	wily	Released (1:2.3+dfsg-5ubuntu9.4)
	xenial	Released (1:2.5+dfsg-5ubuntu10.1)
	Patches: upstream: http://git.qemu.org/?p=qemu.git;a=commit;h=3c52ddcdc548e7fbe65112d8a7bdc9cd105b4750 upstream: http://git.qemu.org/?p=qemu.git;a=commit;h=74074e8a7c60592cf1cc6469dbc2550d24aeded3 upstream: http://git.qemu.org/?p=qemu.git;a=commit;h=9f14b0add1dcdbfa2ee61051d068211fb0a1fcc9 upstream: http://git.qemu.org/?p=qemu.git;a=commit;h=60253ed1e6ec6d8e5ef2efe7bf755f475dce9956 upstream: http://git.qemu.org/?p=qemu.git;a=commit;h=443590c2044968a97f5e7cddd35100c6075856a4
qemu-kvm Launchpad, Ubuntu, Debian	precise	Not vulnerable (code not present)
	trusty	Does not exist
	upstream	Needs triage
	wily	Does not exist
	xenial	Does not exist

Severity score breakdown

Parameter	Value
Base score	6.5
Attack vector	Local
Attack complexity	Low
Privileges required	Low
User interaction	None
Scope	Changed
Confidentiality	None
Integrity impact	None
Availability impact	High
Vector	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

References

Bugs

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›