CVE-2016-5126

Published: 1 June 2016

Heap-based buffer overflow in the iscsi_aio_ioctl function in block/iscsi.c in QEMU allows local guest OS users to cause a denial of service (QEMU process crash) or possibly execute arbitrary code via a crafted iSCSI asynchronous I/O ioctl call.

Priority

CVSS 3 base score: 7.8

Status

Package	Release	Status
qemu Launchpad, Ubuntu, Debian	precise	Does not exist
	trusty	Released (2.0.0+dfsg-2ubuntu1.26)
	upstream	Needs triage
	wily	Ignored (reached end-of-life)
	xenial	Released (1:2.5+dfsg-5ubuntu10.3)
	Patches: upstream: http://git.qemu.org/?p=qemu.git;a=commitdiff;h=a6b3167fa0e825aebb5a7cd8b437b6d41584a196
qemu-kvm Launchpad, Ubuntu, Debian	precise	Not vulnerable (code not present)
	trusty	Does not exist
	upstream	Needs triage
	wily	Does not exist
	xenial	Does not exist

References

Bugs

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Security