Wind River Support Network

HomeDefectsLIN5-13915
Fixed

LIN5-13915 : Security Advisory - qemu - CVE-2012-6075

Created: Feb 16, 2013    Updated: Dec 19, 2017
Resolved Date: Jan 21, 2014
Previous ID: LIN3-19833
Found In Version: 5.0
Fix Version: 5.0.1.12
Severity: Severe
Applicable for: Wind River Linux 5
Component/s: Userspace

Description

Buffer overflow in the e1000_receive function in the e1000 device driver (hw/e1000.c) in QEMU 1.3.0-rc2 and other versions, when the SBP and LPE flags are disabled, allows remote attackers to cause a denial of service (guest OS crash) and possibly execute arbitrary guest code via a large packet.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6075

Workaround

Unknown

Steps to Reproduce

Unknown

Other Downloads


Live chat
Online