CVE-2016-9776 in QEMUinfo

Summary

QEMU (aka Quick Emulator) built with the ColdFire Fast Ethernet Controller emulator support is vulnerable to an infinite loop issue. It could occur while receiving packets in 'mcf_fec_receive'. A privileged user/process inside guest could use this issue to crash the QEMU process on the host leading to DoS.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

12/02/2016

Disclosure

12/29/2016

Moderation

VulDB entry created

Entries

1: VDB-94722

CPE

ready

CWE

CWE-399 (Confirmed)

CVSS

4.3

EPSS

0.00064

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-9776
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-9776
CVE Details	https://www.cvedetails.com/cve/CVE-2016-9776/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!