Your submission was sent successfully! Close

CVE-2017-8380

Published: 28 August 2017

Buffer overflow in the "megasas_mmio_write" function in Qemu 2.9.0 allows remote attackers to have unspecified impact via unknown vectors.

Priority

Low

CVSS 3 base score: 9.8

Status

Package Release Status
qemu
Launchpad, Ubuntu, Debian
precise Does not exist

trusty Not vulnerable
(code not present)
upstream Needs triage

xenial
Released (1:2.5+dfsg-5ubuntu10.15)
yakkety Ignored
(reached end-of-life)
zesty
Released (1:2.8+dfsg-3ubuntu2.4)
Patches:
upstream: https://git.qemu.org/gitweb.cgi?p=qemu.git;a=commit;h=24dfa9fa2f90a95ac33c7372de4f4f2c8a2c141f
qemu-kvm
Launchpad, Ubuntu, Debian
precise Not vulnerable
(code not present)
trusty Does not exist

upstream Needs triage

xenial Does not exist

yakkety Does not exist

zesty Does not exist