Wind River Support Network

HomeDefectsLIN6-11493

Fixed

LIN6-11493 : Security Advisory - qemu - CVE-2016-5337

Created: Jun 29, 2016 Updated: Dec 3, 2018

Resolved Date: Jul 10, 2016

Found In Version: 6.0.0.29

Fix Version: 6.0.0.31

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

The megasas_ctrl_get_info function in hw/scsi/megasas.c in QEMU allows local guest OS administrators to obtain sensitive host memory information via vectors related to reading device control information.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5337

Other Downloads

Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38