CVE-2016-9912 in QEMUinfo

Summary

Quick Emulator (Qemu) built with the Virtio GPU Device emulator support is vulnerable to a memory leakage issue. It could occur while destroying gpu resource object in 'virtio_gpu_resource_destroy'. A guest user/process could use this flaw to leak host memory bytes, resulting in DoS for a host.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

12/08/2016

Disclosure

12/23/2016

Moderation

VulDB entry created

Entries

VDB-94674 (1)

CPE

ready

CWE

CWE-400 (Confirmed)

CVSS

6.5

EPSS

0.00111

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-9912
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-9912
CVE Details	https://www.cvedetails.com/cve/CVE-2016-9912/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!