Wind River Support Network

HomeDefectsLIN8-6297

Fixed

LIN8-6297 : Security Advisory - qemu - CVE-2017-6505

Created: Mar 28, 2017 Updated: Jan 19, 2021

Resolved Date: Mar 31, 2017

Found In Version: 8.0.0.15

Fix Version: 8.0.0.16

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Userspace

Description

The ohci_service_ed_list function in hw/usb/hcd-ohci.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (infinite loop) via vectors involving the number of link endpoint list descriptors.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-6505

Other Downloads

Wind River Linux 8.0.0.16
Wind River Linux 8.0.0.17
Wind River Linux 8.0.0.18
Wind River Linux 8.0.0.19
Wind River Linux 8.0.0.20
Wind River Linux 8.0.0.21
Wind River Linux 8.0.0.22
Wind River Linux 8.0.0.23
Wind River Linux 8.0.0.24
Wind River Linux 8.0.0.25
Wind River Linux 8.0.0.26
Wind River Linux 8.0.0.27
Wind River Linux 8.0.0.28
Wind River Linux 8.0.0.29
Wind River Linux 8.0.0.30
Wind River Linux 8.0.0.31
Wind River Linux 8.0.0.32
Wind River Linux 8.0.0.33
Wind River Linux 8.0.0.34

CVEs

CVE-2017-6505