CVE-2016-2197 in QEMUinfo

Summary

QEMU (aka Quick Emulator) built with an IDE AHCI emulation support is vulnerable to a null pointer dereference flaw. It occurs while unmapping the Frame Information Structure (FIS) and Command List Block (CLB) entries. A privileged user inside guest could use this flaw to crash the QEMU process instance resulting in DoS.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

01/29/2016

Disclosure

12/29/2016

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-476 (Confirmed)

CVSS

4.4

EPSS

0.00111

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-2197
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-2197
CVE Details	https://www.cvedetails.com/cve/CVE-2016-2197/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!