ID CVE-2017-15268
Summary Qemu through 2.10.0 allows remote attackers to cause a memory leak by triggering slow data-channel read operations, related to io/channel-websock.c.
References
Vulnerable Configurations
  • cpe:2.3:a:qemu:qemu:2.10.0
    cpe:2.3:a:qemu:qemu:2.10.0
CVSS
Base: 5.0
Impact:
Exploitability:
CWE CWE-399
CAPEC
refmap via4
bid 101277
confirm https://bugs.launchpad.net/qemu/+bug/1718964
mlist [qemu-devel] 20171010 [PATCH v1 1/7] io: monitor encoutput buffer size from websocket GSource
Last major update 12-10-2017 - 11:29
Published 12-10-2017 - 11:29
Last modified 25-10-2017 - 15:47
Back to Top