CVE-2016-8909

描述

The intel_hda_xfer function in hw/audio/intel-hda.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) via an entry with the same value for buffer length and pointer position.

受影響套件(2)

• Alpine/qemufrom 0, < 2.8.1-r1
• Debian/qemufrom 0, < 1:2.8+dfsg-1

CVSS 分數

參考連結(2)

• ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2016-8909
• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2016-8909