Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is vulnerable to an integer overflow, which could lead to buffer overflow issue. It could occur when receiving packets over the network. A user inside guest could use this flaw to crash the Qemu process resulting in DoS.

Project Subscriptions

Vendors Products
Canonical Subscribe
Ubuntu Linux Subscribe
Debian Linux Subscribe
Enterprise Linux Subscribe
Advisories
Source ID Title
Debian DLA Debian DLA DLA-1599-1 qemu security update
Debian DSA Debian DSA DSA-4338-1 qemu security update
EUVD EUVD EUVD-2018-2908 Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is vulnerable to an integer overflow, which could lead to buffer overflow issue. It could occur when receiving packets over the network. A user inside guest could use this flaw to crash the Qemu process resulting in DoS.
Ubuntu USN Ubuntu USN USN-3826-1 QEMU vulnerabilities
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2024-08-05T07:46:47.471Z

Reserved: 2018-05-09T00:00:00.000Z

Link: CVE-2018-10839

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-10-16T14:29:01.197

Modified: 2024-11-21T03:42:06.957

Link: CVE-2018-10839

cve-icon Redhat

Severity : Moderate

Publid Date: 2018-09-26T00:00:00Z

Links: CVE-2018-10839 - Bugzilla

cve-icon OpenCVE Enrichment

No data.

Weaknesses