Wind River Support Network

HomeDefectsLIN7-6787

Fixed

LIN7-6787 : Security Advisory - qemu - CVE-2016-5107

Created: Sep 11, 2016 Updated: Sep 8, 2018

Resolved Date: Oct 10, 2016

Found In Version: 7.0.0.19

Fix Version: 7.0.0.21

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

The megasas_lookup_frame function in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS administrators to cause a denial of service (out-of-bounds read and crash) via unspecified vectors.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5107

Other Downloads

Wind River Linux 7.0.0.21
Wind River Linux 7.0.0.22
Wind River Linux 7.0.0.23
Wind River Linux 7.0.0.24
Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2016-5107