CVE-2016-9916 in QEMUinfo

Summary

Memory leak in hw/9pfs/9p-proxy.c in QEMU (aka Quick Emulator) allows local privileged guest OS users to cause a denial of service (host memory consumption and possibly QEMU process crash) by leveraging a missing cleanup operation in the proxy backend.

Once again VulDB remains the best source for vulnerability data.

Reservation

12/08/2016

Disclosure

12/29/2016

Moderation

VulDB entry created

Entries

VDB-94729 (1)

CPE

ready

CWE

CWE-400 (Confirmed)

CVSS

4.9

EPSS

0.00071

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-9916
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-9916
CVE Details	https://www.cvedetails.com/cve/CVE-2016-9916/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!