Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2016-3710 (GCVE-0-2016-3710)
Vulnerability from cvelistv5 – Published: 2016-05-11 21:00 – Updated: 2024-08-06 00:03
VLAI?
EPSS
Summary
The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arbitrary code on the host by changing access modes after setting the bank register, aka the "Dark Portal" issue.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
22 references
Date Public ?
2016-05-09 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T00:03:34.465Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://xenbits.xen.org/xsa/advisory-179.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
},
{
"name": "RHSA-2016:0999",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0999.html"
},
{
"name": "90316",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/90316"
},
{
"name": "RHSA-2016:0725",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0725.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html"
},
{
"name": "RHSA-2016:1000",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1000.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://support.citrix.com/article/CTX212736"
},
{
"name": "RHSA-2016:1002",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1002.html"
},
{
"name": "RHSA-2016:1001",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1001.html"
},
{
"name": "RHSA-2016:0997",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0997.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05164862"
},
{
"name": "1035794",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1035794"
},
{
"name": "RHSA-2016:1943",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1943.html"
},
{
"name": "RHSA-2016:1019",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1019.html"
},
{
"name": "USN-2974-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-2974-1"
},
{
"name": "[oss-security] 20160509 CVE-2016-3710 Qemu: vga: out-of-bounds r/w access issue",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2016/05/09/3"
},
{
"name": "RHSA-2016:0724",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0724.html"
},
{
"name": "[Qemu-devel] 20160509 [PULL 1/5] vga: fix banked access bounds checking (CVE-2016-3710)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg01197.html"
},
{
"name": "RHSA-2016:1224",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2016:1224"
},
{
"name": "DSA-3573",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2016/dsa-3573"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2016-05-09T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arbitrary code on the host by changing access modes after setting the bank register, aka the \"Dark Portal\" issue."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-01-04T19:57:01.000Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://xenbits.xen.org/xsa/advisory-179.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
},
{
"name": "RHSA-2016:0999",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0999.html"
},
{
"name": "90316",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/90316"
},
{
"name": "RHSA-2016:0725",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0725.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html"
},
{
"name": "RHSA-2016:1000",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1000.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://support.citrix.com/article/CTX212736"
},
{
"name": "RHSA-2016:1002",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1002.html"
},
{
"name": "RHSA-2016:1001",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1001.html"
},
{
"name": "RHSA-2016:0997",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0997.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05164862"
},
{
"name": "1035794",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1035794"
},
{
"name": "RHSA-2016:1943",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1943.html"
},
{
"name": "RHSA-2016:1019",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1019.html"
},
{
"name": "USN-2974-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-2974-1"
},
{
"name": "[oss-security] 20160509 CVE-2016-3710 Qemu: vga: out-of-bounds r/w access issue",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2016/05/09/3"
},
{
"name": "RHSA-2016:0724",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0724.html"
},
{
"name": "[Qemu-devel] 20160509 [PULL 1/5] vga: fix banked access bounds checking (CVE-2016-3710)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg01197.html"
},
{
"name": "RHSA-2016:1224",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2016:1224"
},
{
"name": "DSA-3573",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2016/dsa-3573"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2016-3710",
"datePublished": "2016-05-11T21:00:00.000Z",
"dateReserved": "2016-03-30T00:00:00.000Z",
"dateUpdated": "2024-08-06T00:03:34.465Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2016-3710",
"date": "2026-05-20",
"epss": "0.00073",
"percentile": "0.22068"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:helion_openstack:2.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"46D566AF-D1DE-4EAD-B881-DC40D1DE780C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:helion_openstack:2.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"81BED703-422A-4937-8BF0-F83C248188F9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:helion_openstack:2.1.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A241BABC-E6A8-43B1-BED6-77FC38E337BD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:helion_openstack:2.1.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DBE8AEFE-C74B-4E24-8EBA-35207DE756E3\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*\", \"matchCriteriaId\": \"B6B7CAD7-9D4E-4FDB-88E3-1E583210A01F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*\", \"matchCriteriaId\": \"B5A6F2F3-4894-4392-8296-3B8DD2679084\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E88A537F-F4D0-46B9-9E37-965233C2A355\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\", \"matchCriteriaId\": \"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"2.5.1\", \"matchCriteriaId\": \"26A04769-0D4E-4B7B-B54C-C686FB69D85A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:qemu:qemu:2.6.0:rc0:*:*:*:*:*:*\", \"matchCriteriaId\": \"544B3E62-7AE7-4925-9E50-CAFDAD5A3851\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:qemu:qemu:2.6.0:rc1:*:*:*:*:*:*\", \"matchCriteriaId\": \"B8C11472-2B2A-4110-A04B-5CFBA0763432\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:qemu:qemu:2.6.0:rc2:*:*:*:*:*:*\", \"matchCriteriaId\": \"ECD3B63B-1388-4C24-B9B9-043C04FE1F1B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:qemu:qemu:2.6.0:rc3:*:*:*:*:*:*\", \"matchCriteriaId\": \"B10C154A-F559-4BE1-94AE-8619D4634564\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:qemu:qemu:2.6.0:rc4:*:*:*:*:*:*\", \"matchCriteriaId\": \"F7126355-4164-4E54-BCC3-D3D6D1E5AF81\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:vm_server:3.2:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"FC9E8528-0FB8-4BF0-A9EF-6CC84A2631A1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:vm_server:3.3:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"8663D0AF-825D-48FC-8AED-498434A0AA76\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:vm_server:3.4:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"457955E5-41E5-4E17-8435-AA0F6F757A21\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:oracle:linux:5:-:*:*:*:*:*:*\", \"matchCriteriaId\": \"62A2AC02-A933-4E51-810E-5D040B476B7B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*\", \"matchCriteriaId\": \"D7B037A8-72A6-4DFF-94B2-D688A5F6F876\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:oracle:linux:7:-:*:*:*:*:*:*\", \"matchCriteriaId\": \"44B8FEDF-6CB0-46E9-9AD7-4445B001C158\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:citrix:xenserver:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"7.0\", \"matchCriteriaId\": \"DE91B02A-0F07-437D-8AFC-38541C5A04AD\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openstack:5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B152EDF3-3140-4343-802F-F4F1C329F5C3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openstack:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"31EC146C-A6F6-4C0D-AF87-685286262DAA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9DAA72A4-AC7D-4544-89D4-5B07961D5A95\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E8B8C725-34CF-4340-BE7B-37E58CF706D6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:virtualization:3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D86166F9-BBF0-4650-8CCD-0F9C97104D21\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"33C068A4-3780-4EAB-A937-6082DF847564\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9BBCD86A-E6C7-4444-9D74-F861084090F0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"51EF4996-72F4-4FA4-814F-F5991E7A8318\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1C8D871B-AEA1-4407-AEE3-47EC782250FF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"98381E61-F082-4302-B51F-5648884F998B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D99A687E-EAE6-417E-A88E-D0082BC194CD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B353CE99-D57C-465B-AAB0-73EF581127D1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"44B067C7-735E-43C9-9188-7E1522A02491\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A8442C20-41F9-47FD-9A12-E724D3A31FD7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9EC0D196-F7B8-4BDD-9050-779F7A7FBEE4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A4E9DD8A-A68B-4A69-8B01-BFF92A2020A8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BF77CDCF-B9C9-427D-B2BF-36650FB2148C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"21690BAC-2129-4A33-9B48-1F3BF30072A9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6755B6AD-0422-467B-8115-34A60B1D1A40\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"24C0F4E1-C52C-41E0-9F14-F83ADD5CC7ED\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B76AA310-FEC7-497F-AF04-C3EC1E76C4CC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"17F256A9-D3B9-4C72-B013-4EFD878BFEA8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E5ED5807-55B7-47C5-97A6-03233F4FBC3A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"825ECE2D-E232-46E0-A047-074B34DB1E97\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arbitrary code on the host by changing access modes after setting the bank register, aka the \\\"Dark Portal\\\" issue.\"}, {\"lang\": \"es\", \"value\": \"El m\\u00f3dulo VGA en QEMU lleva a cabo incorrectamente comprobaciones de l\\u00edmites sobre acceso almacenado a la memoria de v\\u00eddeo, lo que permite a administradores locales de SO invitado ejecutar c\\u00f3digo arbitrario sobre el anfitri\\u00f3n cambiando los modos de acceso despu\\u00e9s de establecer el banco de registros, tambi\\u00e9n conocido como el problema \\\"Dark Portal\\\".\"}]",
"id": "CVE-2016-3710",
"lastModified": "2024-11-21T02:50:32.940",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\", \"baseScore\": 8.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.0, \"impactScore\": 6.0}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:C/I:C/A:C\", \"baseScore\": 7.2, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 3.9, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2016-05-11T21:59:01.077",
"references": "[{\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-0724.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-0725.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-0997.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-0999.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-1000.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-1001.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-1002.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-1019.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-1943.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://support.citrix.com/article/CTX212736\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.debian.org/security/2016/dsa-3573\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2016/05/09/3\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/90316\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1035794\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.ubuntu.com/usn/USN-2974-1\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://xenbits.xen.org/xsa/advisory-179.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2016:1224\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05164862\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"Vendor Advisory\"]}, {\"url\": \"https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg01197.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-0724.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-0725.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-0997.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-0999.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-1000.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-1001.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-1002.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-1019.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-1943.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://support.citrix.com/article/CTX212736\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.debian.org/security/2016/dsa-3573\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2016/05/09/3\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/90316\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1035794\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.ubuntu.com/usn/USN-2974-1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://xenbits.xen.org/xsa/advisory-179.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2016:1224\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05164862\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"Vendor Advisory\"]}, {\"url\": \"https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg01197.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\", \"Third Party Advisory\"]}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-119\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2016-3710\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2016-05-11T21:59:01.077\",\"lastModified\":\"2026-05-06T22:30:45.220\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arbitrary code on the host by changing access modes after setting the bank register, aka the \\\"Dark Portal\\\" issue.\"},{\"lang\":\"es\",\"value\":\"El m\u00f3dulo VGA en QEMU lleva a cabo incorrectamente comprobaciones de l\u00edmites sobre acceso almacenado a la memoria de v\u00eddeo, lo que permite a administradores locales de SO invitado ejecutar c\u00f3digo arbitrario sobre el anfitri\u00f3n cambiando los modos de acceso despu\u00e9s de establecer el banco de registros, tambi\u00e9n conocido como el problema \\\"Dark Portal\\\".\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.0,\"impactScore\":6.0}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":7.2,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":3.9,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:helion_openstack:2.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"46D566AF-D1DE-4EAD-B881-DC40D1DE780C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:helion_openstack:2.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"81BED703-422A-4937-8BF0-F83C248188F9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:helion_openstack:2.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A241BABC-E6A8-43B1-BED6-77FC38E337BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:helion_openstack:2.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DBE8AEFE-C74B-4E24-8EBA-35207DE756E3\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"B6B7CAD7-9D4E-4FDB-88E3-1E583210A01F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"B5A6F2F3-4894-4392-8296-3B8DD2679084\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E88A537F-F4D0-46B9-9E37-965233C2A355\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.5.1\",\"matchCriteriaId\":\"26A04769-0D4E-4B7B-B54C-C686FB69D85A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:qemu:qemu:2.6.0:rc0:*:*:*:*:*:*\",\"matchCriteriaId\":\"544B3E62-7AE7-4925-9E50-CAFDAD5A3851\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:qemu:qemu:2.6.0:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8C11472-2B2A-4110-A04B-5CFBA0763432\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:qemu:qemu:2.6.0:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"ECD3B63B-1388-4C24-B9B9-043C04FE1F1B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:qemu:qemu:2.6.0:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"B10C154A-F559-4BE1-94AE-8619D4634564\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:qemu:qemu:2.6.0:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"F7126355-4164-4E54-BCC3-D3D6D1E5AF81\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:vm_server:3.2:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"FC9E8528-0FB8-4BF0-A9EF-6CC84A2631A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:vm_server:3.3:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"8663D0AF-825D-48FC-8AED-498434A0AA76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:vm_server:3.4:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"457955E5-41E5-4E17-8435-AA0F6F757A21\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:oracle:linux:5:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"62A2AC02-A933-4E51-810E-5D040B476B7B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"D7B037A8-72A6-4DFF-94B2-D688A5F6F876\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:oracle:linux:7:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"44B8FEDF-6CB0-46E9-9AD7-4445B001C158\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:citrix:xenserver:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"7.0\",\"matchCriteriaId\":\"DE91B02A-0F07-437D-8AFC-38541C5A04AD\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openstack:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B152EDF3-3140-4343-802F-F4F1C329F5C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openstack:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"31EC146C-A6F6-4C0D-AF87-685286262DAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9DAA72A4-AC7D-4544-89D4-5B07961D5A95\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8B8C725-34CF-4340-BE7B-37E58CF706D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:virtualization:3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D86166F9-BBF0-4650-8CCD-0F9C97104D21\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33C068A4-3780-4EAB-A937-6082DF847564\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BBCD86A-E6C7-4444-9D74-F861084090F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51EF4996-72F4-4FA4-814F-F5991E7A8318\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1C8D871B-AEA1-4407-AEE3-47EC782250FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"98381E61-F082-4302-B51F-5648884F998B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D99A687E-EAE6-417E-A88E-D0082BC194CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B353CE99-D57C-465B-AAB0-73EF581127D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"44B067C7-735E-43C9-9188-7E1522A02491\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A8442C20-41F9-47FD-9A12-E724D3A31FD7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9EC0D196-F7B8-4BDD-9050-779F7A7FBEE4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A4E9DD8A-A68B-4A69-8B01-BFF92A2020A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF77CDCF-B9C9-427D-B2BF-36650FB2148C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"21690BAC-2129-4A33-9B48-1F3BF30072A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6755B6AD-0422-467B-8115-34A60B1D1A40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"24C0F4E1-C52C-41E0-9F14-F83ADD5CC7ED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B76AA310-FEC7-497F-AF04-C3EC1E76C4CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"17F256A9-D3B9-4C72-B013-4EFD878BFEA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E5ED5807-55B7-47C5-97A6-03233F4FBC3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"825ECE2D-E232-46E0-A047-074B34DB1E97\"}]}]}],\"references\":[{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-0724.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-0725.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-0997.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-0999.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-1000.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-1001.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-1002.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-1019.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-1943.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://support.citrix.com/article/CTX212736\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.debian.org/security/2016/dsa-3573\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2016/05/09/3\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/90316\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1035794\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-2974-1\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://xenbits.xen.org/xsa/advisory-179.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2016:1224\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05164862\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"Vendor Advisory\"]},{\"url\":\"https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg01197.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-0724.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-0725.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-0997.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-0999.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-1000.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-1001.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-1002.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-1019.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-1943.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://support.citrix.com/article/CTX212736\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.debian.org/security/2016/dsa-3573\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2016/05/09/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/90316\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1035794\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-2974-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://xenbits.xen.org/xsa/advisory-179.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2016:1224\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05164862\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"Vendor Advisory\"]},{\"url\":\"https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg01197.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]}]}}"
}
}
CERTFR-2016-AVI-158
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Xen. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Xen toutes versions exécutant qemu sans les derniers correctifs de sécurité
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003eXen toutes versions ex\u00e9cutant qemu sans les derniers correctifs de s\u00e9curit\u00e9\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2016-3712",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3712"
},
{
"name": "CVE-2016-3710",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3710"
}
],
"links": [],
"reference": "CERTFR-2016-AVI-158",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2016-05-10T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eXen\u003c/span\u003e. Elles permettent \u00e0 un attaquant de provoquer\nune ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0\ndistance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Xen",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Xen XSA-179 du 09 mai 2016",
"url": "http://xenbits.xen.org/xsa/advisory-179.html"
}
]
}
CERTFR-2016-AVI-158
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Xen. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Xen toutes versions exécutant qemu sans les derniers correctifs de sécurité
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003eXen toutes versions ex\u00e9cutant qemu sans les derniers correctifs de s\u00e9curit\u00e9\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2016-3712",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3712"
},
{
"name": "CVE-2016-3710",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3710"
}
],
"links": [],
"reference": "CERTFR-2016-AVI-158",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2016-05-10T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eXen\u003c/span\u003e. Elles permettent \u00e0 un attaquant de provoquer\nune ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0\ndistance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Xen",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Xen XSA-179 du 09 mai 2016",
"url": "http://xenbits.xen.org/xsa/advisory-179.html"
}
]
}
CNVD-2016-03007
Vulnerability from cnvd - Published: 2016-05-12
VLAI Severity ?
Title
QEMU VGA模块拒绝服务漏洞
Description
QEMU是法国程序员法布里斯-贝拉(Fabrice Bellard)所研发的一套模拟处理器软件。该软件具有速度快、跨平台等特点。
QEMU的VGA模块中存在安全漏洞。攻击者可利用该漏洞以提升的权限在主机上执行任意代码,造成拒绝服务(越边界读取和写入)。
Severity
中
Patch Name
QEMU VGA模块拒绝服务漏洞的补丁
Patch Description
QEMU是法国程序员法布里斯-贝拉(Fabrice Bellard)所研发的一套模拟处理器软件。该软件具有速度快、跨平台等特点。
QEMU的VGA模块中存在安全漏洞。攻击者可利用该漏洞以提升的权限在主机上执行任意代码,造成拒绝服务(越边界读取和写入)。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接: http://xenbits.xen.org/xsa/advisory-179.html
Reference
https://www.auscert.org.au/render.html?it=34238
http://www.openwall.com/lists/oss-security/2016/05/09/2
https://www.debian.org/security/2016/dsa-3573
Impacted products
| Name | QEMU QEMU |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2016-3710"
}
},
"description": "QEMU\u662f\u6cd5\u56fd\u7a0b\u5e8f\u5458\u6cd5\u5e03\u91cc\u65af-\u8d1d\u62c9\uff08Fabrice Bellard\uff09\u6240\u7814\u53d1\u7684\u4e00\u5957\u6a21\u62df\u5904\u7406\u5668\u8f6f\u4ef6\u3002\u8be5\u8f6f\u4ef6\u5177\u6709\u901f\u5ea6\u5feb\u3001\u8de8\u5e73\u53f0\u7b49\u7279\u70b9\u3002\r\n\r\nQEMU\u7684VGA\u6a21\u5757\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u4ee5\u63d0\u5347\u7684\u6743\u9650\u5728\u4e3b\u673a\u4e0a\u6267\u884c\u4efb\u610f\u4ee3\u7801\uff0c\u9020\u6210\u62d2\u7edd\u670d\u52a1\uff08\u8d8a\u8fb9\u754c\u8bfb\u53d6\u548c\u5199\u5165\uff09\u3002",
"discovererName": "Xen.org security team",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttp://xenbits.xen.org/xsa/advisory-179.html",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2016-03007",
"openTime": "2016-05-12",
"patchDescription": "QEMU\u662f\u6cd5\u56fd\u7a0b\u5e8f\u5458\u6cd5\u5e03\u91cc\u65af-\u8d1d\u62c9\uff08Fabrice Bellard\uff09\u6240\u7814\u53d1\u7684\u4e00\u5957\u6a21\u62df\u5904\u7406\u5668\u8f6f\u4ef6\u3002\u8be5\u8f6f\u4ef6\u5177\u6709\u901f\u5ea6\u5feb\u3001\u8de8\u5e73\u53f0\u7b49\u7279\u70b9\u3002\r\n\r\nQEMU\u7684VGA\u6a21\u5757\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u4ee5\u63d0\u5347\u7684\u6743\u9650\u5728\u4e3b\u673a\u4e0a\u6267\u884c\u4efb\u610f\u4ee3\u7801\uff0c\u9020\u6210\u62d2\u7edd\u670d\u52a1\uff08\u8d8a\u8fb9\u754c\u8bfb\u53d6\u548c\u5199\u5165\uff09\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "QEMU VGA\u6a21\u5757\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": "QEMU QEMU"
},
"referenceLink": "https://www.auscert.org.au/render.html?it=34238\r\nhttp://www.openwall.com/lists/oss-security/2016/05/09/2\r\nhttps://www.debian.org/security/2016/dsa-3573",
"serverity": "\u4e2d",
"submitTime": "2016-05-10",
"title": "QEMU VGA\u6a21\u5757\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}
FKIE_CVE-2016-3710
Vulnerability from fkie_nvd - Published: 2016-05-11 21:59 - Updated: 2026-05-06 22:30
Severity ?
Summary
The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arbitrary code on the host by changing access modes after setting the bank register, aka the "Dark Portal" issue.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:hp:helion_openstack:2.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "46D566AF-D1DE-4EAD-B881-DC40D1DE780C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:hp:helion_openstack:2.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "81BED703-422A-4937-8BF0-F83C248188F9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:hp:helion_openstack:2.1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "A241BABC-E6A8-43B1-BED6-77FC38E337BD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:hp:helion_openstack:2.1.4:*:*:*:*:*:*:*",
"matchCriteriaId": "DBE8AEFE-C74B-4E24-8EBA-35207DE756E3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "B6B7CAD7-9D4E-4FDB-88E3-1E583210A01F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "B5A6F2F3-4894-4392-8296-3B8DD2679084",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*",
"matchCriteriaId": "E88A537F-F4D0-46B9-9E37-965233C2A355",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*",
"matchCriteriaId": "26A04769-0D4E-4B7B-B54C-C686FB69D85A",
"versionEndIncluding": "2.5.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:qemu:qemu:2.6.0:rc0:*:*:*:*:*:*",
"matchCriteriaId": "544B3E62-7AE7-4925-9E50-CAFDAD5A3851",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:qemu:qemu:2.6.0:rc1:*:*:*:*:*:*",
"matchCriteriaId": "B8C11472-2B2A-4110-A04B-5CFBA0763432",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:qemu:qemu:2.6.0:rc2:*:*:*:*:*:*",
"matchCriteriaId": "ECD3B63B-1388-4C24-B9B9-043C04FE1F1B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:qemu:qemu:2.6.0:rc3:*:*:*:*:*:*",
"matchCriteriaId": "B10C154A-F559-4BE1-94AE-8619D4634564",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:qemu:qemu:2.6.0:rc4:*:*:*:*:*:*",
"matchCriteriaId": "F7126355-4164-4E54-BCC3-D3D6D1E5AF81",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:vm_server:3.2:*:*:*:*:*:x86:*",
"matchCriteriaId": "FC9E8528-0FB8-4BF0-A9EF-6CC84A2631A1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:vm_server:3.3:*:*:*:*:*:x86:*",
"matchCriteriaId": "8663D0AF-825D-48FC-8AED-498434A0AA76",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:vm_server:3.4:*:*:*:*:*:x86:*",
"matchCriteriaId": "457955E5-41E5-4E17-8435-AA0F6F757A21",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:oracle:linux:5:-:*:*:*:*:*:*",
"matchCriteriaId": "62A2AC02-A933-4E51-810E-5D040B476B7B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*",
"matchCriteriaId": "D7B037A8-72A6-4DFF-94B2-D688A5F6F876",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:oracle:linux:7:-:*:*:*:*:*:*",
"matchCriteriaId": "44B8FEDF-6CB0-46E9-9AD7-4445B001C158",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:citrix:xenserver:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DE91B02A-0F07-437D-8AFC-38541C5A04AD",
"versionEndIncluding": "7.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:openstack:5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "B152EDF3-3140-4343-802F-F4F1C329F5C3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:openstack:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "31EC146C-A6F6-4C0D-AF87-685286262DAA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "9DAA72A4-AC7D-4544-89D4-5B07961D5A95",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*",
"matchCriteriaId": "E8B8C725-34CF-4340-BE7B-37E58CF706D6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:virtualization:3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "D86166F9-BBF0-4650-8CCD-0F9C97104D21",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "33C068A4-3780-4EAB-A937-6082DF847564",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "9BBCD86A-E6C7-4444-9D74-F861084090F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*",
"matchCriteriaId": "1C8D871B-AEA1-4407-AEE3-47EC782250FF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*",
"matchCriteriaId": "98381E61-F082-4302-B51F-5648884F998B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*",
"matchCriteriaId": "D99A687E-EAE6-417E-A88E-D0082BC194CD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*",
"matchCriteriaId": "B353CE99-D57C-465B-AAB0-73EF581127D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*",
"matchCriteriaId": "44B067C7-735E-43C9-9188-7E1522A02491",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*",
"matchCriteriaId": "A8442C20-41F9-47FD-9A12-E724D3A31FD7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*",
"matchCriteriaId": "9EC0D196-F7B8-4BDD-9050-779F7A7FBEE4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*",
"matchCriteriaId": "A4E9DD8A-A68B-4A69-8B01-BFF92A2020A8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*",
"matchCriteriaId": "BF77CDCF-B9C9-427D-B2BF-36650FB2148C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.7:*:*:*:*:*:*:*",
"matchCriteriaId": "21690BAC-2129-4A33-9B48-1F3BF30072A9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*",
"matchCriteriaId": "6755B6AD-0422-467B-8115-34A60B1D1A40",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*",
"matchCriteriaId": "24C0F4E1-C52C-41E0-9F14-F83ADD5CC7ED",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*",
"matchCriteriaId": "B76AA310-FEC7-497F-AF04-C3EC1E76C4CC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*",
"matchCriteriaId": "17F256A9-D3B9-4C72-B013-4EFD878BFEA8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E5ED5807-55B7-47C5-97A6-03233F4FBC3A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arbitrary code on the host by changing access modes after setting the bank register, aka the \"Dark Portal\" issue."
},
{
"lang": "es",
"value": "El m\u00f3dulo VGA en QEMU lleva a cabo incorrectamente comprobaciones de l\u00edmites sobre acceso almacenado a la memoria de v\u00eddeo, lo que permite a administradores locales de SO invitado ejecutar c\u00f3digo arbitrario sobre el anfitri\u00f3n cambiando los modos de acceso despu\u00e9s de establecer el banco de registros, tambi\u00e9n conocido como el problema \"Dark Portal\"."
}
],
"id": "CVE-2016-3710",
"lastModified": "2026-05-06T22:30:45.220",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.0,
"impactScore": 6.0,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2016-05-11T21:59:01.077",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0724.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0725.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0997.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0999.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1000.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1001.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1002.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1019.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1943.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://support.citrix.com/article/CTX212736"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.debian.org/security/2016/dsa-3573"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2016/05/09/3"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/90316"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1035794"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-2974-1"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://xenbits.xen.org/xsa/advisory-179.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2016:1224"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"Vendor Advisory"
],
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05164862"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Patch",
"Third Party Advisory"
],
"url": "https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg01197.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0724.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0725.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0997.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0999.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1000.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1001.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1002.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1019.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1943.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://support.citrix.com/article/CTX212736"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.debian.org/security/2016/dsa-3573"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2016/05/09/3"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/90316"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1035794"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-2974-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://xenbits.xen.org/xsa/advisory-179.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2016:1224"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"Vendor Advisory"
],
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05164862"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch",
"Third Party Advisory"
],
"url": "https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg01197.html"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-119"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-P6HQ-65M2-R4JG
Vulnerability from github – Published: 2022-05-13 01:07 – Updated: 2022-05-13 01:07
VLAI?
Details
The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arbitrary code on the host by changing access modes after setting the bank register, aka the "Dark Portal" issue.
Severity ?
8.8 (High)
{
"affected": [],
"aliases": [
"CVE-2016-3710"
],
"database_specific": {
"cwe_ids": [
"CWE-119"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2016-05-11T21:59:00Z",
"severity": "HIGH"
},
"details": "The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arbitrary code on the host by changing access modes after setting the bank register, aka the \"Dark Portal\" issue.",
"id": "GHSA-p6hq-65m2-r4jg",
"modified": "2022-05-13T01:07:34Z",
"published": "2022-05-13T01:07:34Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3710"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2016:1224"
},
{
"type": "WEB",
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05164862"
},
{
"type": "WEB",
"url": "https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg01197.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2016-0724.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2016-0725.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2016-0997.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2016-0999.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2016-1000.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2016-1001.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2016-1002.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2016-1019.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2016-1943.html"
},
{
"type": "WEB",
"url": "http://support.citrix.com/article/CTX212736"
},
{
"type": "WEB",
"url": "http://www.debian.org/security/2016/dsa-3573"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2016/05/09/3"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/90316"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1035794"
},
{
"type": "WEB",
"url": "http://www.ubuntu.com/usn/USN-2974-1"
},
{
"type": "WEB",
"url": "http://xenbits.xen.org/xsa/advisory-179.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2016-3710
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arbitrary code on the host by changing access modes after setting the bank register, aka the "Dark Portal" issue.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2016-3710",
"description": "The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arbitrary code on the host by changing access modes after setting the bank register, aka the \"Dark Portal\" issue.",
"id": "GSD-2016-3710",
"references": [
"https://www.suse.com/security/cve/CVE-2016-3710.html",
"https://www.debian.org/security/2016/dsa-3573",
"https://access.redhat.com/errata/RHSA-2016:1943",
"https://access.redhat.com/errata/RHSA-2016:1224",
"https://access.redhat.com/errata/RHSA-2016:1019",
"https://access.redhat.com/errata/RHSA-2016:1002",
"https://access.redhat.com/errata/RHSA-2016:1001",
"https://access.redhat.com/errata/RHSA-2016:1000",
"https://access.redhat.com/errata/RHSA-2016:0999",
"https://access.redhat.com/errata/RHSA-2016:0997",
"https://access.redhat.com/errata/RHSA-2016:0725",
"https://access.redhat.com/errata/RHSA-2016:0724",
"https://ubuntu.com/security/CVE-2016-3710",
"https://advisories.mageia.org/CVE-2016-3710.html",
"https://linux.oracle.com/cve/CVE-2016-3710.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2016-3710"
],
"details": "The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arbitrary code on the host by changing access modes after setting the bank register, aka the \"Dark Portal\" issue.",
"id": "GSD-2016-3710",
"modified": "2023-12-13T01:21:27.711811Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2016-3710",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arbitrary code on the host by changing access modes after setting the bank register, aka the \"Dark Portal\" issue."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.ubuntu.com/usn/USN-2974-1",
"refsource": "MISC",
"url": "http://www.ubuntu.com/usn/USN-2974-1"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html",
"refsource": "MISC",
"url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html",
"refsource": "MISC",
"url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html",
"refsource": "MISC",
"url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html"
},
{
"name": "http://rhn.redhat.com/errata/RHSA-2016-0724.html",
"refsource": "MISC",
"url": "http://rhn.redhat.com/errata/RHSA-2016-0724.html"
},
{
"name": "http://rhn.redhat.com/errata/RHSA-2016-0725.html",
"refsource": "MISC",
"url": "http://rhn.redhat.com/errata/RHSA-2016-0725.html"
},
{
"name": "http://rhn.redhat.com/errata/RHSA-2016-0997.html",
"refsource": "MISC",
"url": "http://rhn.redhat.com/errata/RHSA-2016-0997.html"
},
{
"name": "http://rhn.redhat.com/errata/RHSA-2016-0999.html",
"refsource": "MISC",
"url": "http://rhn.redhat.com/errata/RHSA-2016-0999.html"
},
{
"name": "http://rhn.redhat.com/errata/RHSA-2016-1000.html",
"refsource": "MISC",
"url": "http://rhn.redhat.com/errata/RHSA-2016-1000.html"
},
{
"name": "http://rhn.redhat.com/errata/RHSA-2016-1001.html",
"refsource": "MISC",
"url": "http://rhn.redhat.com/errata/RHSA-2016-1001.html"
},
{
"name": "http://rhn.redhat.com/errata/RHSA-2016-1002.html",
"refsource": "MISC",
"url": "http://rhn.redhat.com/errata/RHSA-2016-1002.html"
},
{
"name": "http://rhn.redhat.com/errata/RHSA-2016-1019.html",
"refsource": "MISC",
"url": "http://rhn.redhat.com/errata/RHSA-2016-1019.html"
},
{
"name": "http://rhn.redhat.com/errata/RHSA-2016-1943.html",
"refsource": "MISC",
"url": "http://rhn.redhat.com/errata/RHSA-2016-1943.html"
},
{
"name": "http://support.citrix.com/article/CTX212736",
"refsource": "MISC",
"url": "http://support.citrix.com/article/CTX212736"
},
{
"name": "http://www.debian.org/security/2016/dsa-3573",
"refsource": "MISC",
"url": "http://www.debian.org/security/2016/dsa-3573"
},
{
"name": "http://www.openwall.com/lists/oss-security/2016/05/09/3",
"refsource": "MISC",
"url": "http://www.openwall.com/lists/oss-security/2016/05/09/3"
},
{
"name": "http://www.securityfocus.com/bid/90316",
"refsource": "MISC",
"url": "http://www.securityfocus.com/bid/90316"
},
{
"name": "http://www.securitytracker.com/id/1035794",
"refsource": "MISC",
"url": "http://www.securitytracker.com/id/1035794"
},
{
"name": "http://xenbits.xen.org/xsa/advisory-179.html",
"refsource": "MISC",
"url": "http://xenbits.xen.org/xsa/advisory-179.html"
},
{
"name": "https://access.redhat.com/errata/RHSA-2016:1224",
"refsource": "MISC",
"url": "https://access.redhat.com/errata/RHSA-2016:1224"
},
{
"name": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05164862",
"refsource": "MISC",
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05164862"
},
{
"name": "https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg01197.html",
"refsource": "MISC",
"url": "https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg01197.html"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:hp:helion_openstack:2.0.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:hp:helion_openstack:2.1.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:hp:helion_openstack:2.1.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:hp:helion_openstack:2.1.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.5.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:qemu:qemu:2.6.0:rc0:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:qemu:qemu:2.6.0:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:qemu:qemu:2.6.0:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:qemu:qemu:2.6.0:rc3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:qemu:qemu:2.6.0:rc4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:oracle:vm_server:3.2:*:*:*:*:*:x86:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:vm_server:3.3:*:*:*:*:*:x86:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:vm_server:3.4:*:*:*:*:*:x86:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:oracle:linux:5:-:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:oracle:linux:7:-:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:citrix:xenserver:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "7.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:redhat:openstack:5.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:openstack:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:virtualization:3.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2016-3710"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arbitrary code on the host by changing access modes after setting the bank register, aka the \"Dark Portal\" issue."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-119"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[oss-security] 20160509 CVE-2016-3710 Qemu: vga: out-of-bounds r/w access issue",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2016/05/09/3"
},
{
"name": "[Qemu-devel] 20160509 [PULL 1/5] vga: fix banked access bounds checking (CVE-2016-3710)",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Patch",
"Third Party Advisory"
],
"url": "https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg01197.html"
},
{
"name": "http://xenbits.xen.org/xsa/advisory-179.html",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "http://xenbits.xen.org/xsa/advisory-179.html"
},
{
"name": "1035794",
"refsource": "SECTRACK",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1035794"
},
{
"name": "DSA-3573",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "http://www.debian.org/security/2016/dsa-3573"
},
{
"name": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05164862",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory",
"Vendor Advisory"
],
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05164862"
},
{
"name": "USN-2974-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-2974-1"
},
{
"name": "RHSA-2016:1019",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1019.html"
},
{
"name": "RHSA-2016:1224",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2016:1224"
},
{
"name": "RHSA-2016:1002",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1002.html"
},
{
"name": "RHSA-2016:1001",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1001.html"
},
{
"name": "RHSA-2016:0725",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0725.html"
},
{
"name": "RHSA-2016:0999",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0999.html"
},
{
"name": "RHSA-2016:1000",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1000.html"
},
{
"name": "RHSA-2016:0724",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0724.html"
},
{
"name": "RHSA-2016:0997",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-0997.html"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html"
},
{
"name": "90316",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/90316"
},
{
"name": "http://support.citrix.com/article/CTX212736",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "http://support.citrix.com/article/CTX212736"
},
{
"name": "RHSA-2016:1943",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-1943.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.0,
"impactScore": 6.0
}
},
"lastModifiedDate": "2021-08-04T17:15Z",
"publishedDate": "2016-05-11T21:59Z"
}
}
}
RHSA-2016:0724
Vulnerability from csaf_redhat - Published: 2016-05-09 15:27 - Updated: 2025-11-21 17:56Summary
Red Hat Security Advisory: qemu-kvm security update
Severity
Important
Notes
Topic: An update for qemu-kvm is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on AMD64 and Intel 64 systems. The qemu-kvm packages provide the user-space component for running virtual machines using KVM.
Security Fix(es):
* An out-of-bounds read/write access flaw was found in the way QEMU's VGA emulation with VESA BIOS Extensions (VBE) support performed read/write operations via I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host's QEMU process. (CVE-2016-3710)
Red Hat would like to thank Wei Xiao (360 Marvel Team) and Qinghao Tang (360 Marvel Team) for reporting this issue.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
An out-of-bounds read/write access flaw was found in the way QEMU's VGA emulation with VESA BIOS Extensions (VBE) support performed read/write operations using I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host's QEMU process.
7.6 (High)
Affected products
Fixed
175 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
8 references
Acknowledgments
360.cn Marvel Team
Qinghao Tang
Wei Xiao
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for qemu-kvm is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on AMD64 and Intel 64 systems. The qemu-kvm packages provide the user-space component for running virtual machines using KVM.\n\nSecurity Fix(es):\n\n* An out-of-bounds read/write access flaw was found in the way QEMU\u0027s VGA emulation with VESA BIOS Extensions (VBE) support performed read/write operations via I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host\u0027s QEMU process. (CVE-2016-3710)\n\nRed Hat would like to thank Wei Xiao (360 Marvel Team) and Qinghao Tang (360 Marvel Team) for reporting this issue.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2016:0724",
"url": "https://access.redhat.com/errata/RHSA-2016:0724"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1331401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1331401"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_0724.json"
}
],
"title": "Red Hat Security Advisory: qemu-kvm security update",
"tracking": {
"current_release_date": "2025-11-21T17:56:03+00:00",
"generator": {
"date": "2025-11-21T17:56:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2016:0724",
"initial_release_date": "2016-05-09T15:27:07+00:00",
"revision_history": [
{
"date": "2016-05-09T15:27:07+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2016-05-09T15:27:07+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:56:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.src",
"product": {
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.src",
"product_id": "qemu-kvm-10:1.5.3-105.el7_2.4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm@1.5.3-105.el7_2.4?arch=src\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "libcacard-10:1.5.3-105.el7_2.4.i686",
"product": {
"name": "libcacard-10:1.5.3-105.el7_2.4.i686",
"product_id": "libcacard-10:1.5.3-105.el7_2.4.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard@1.5.3-105.el7_2.4?arch=i686\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"product": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"product_id": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-debuginfo@1.5.3-105.el7_2.4?arch=i686\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"product": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"product_id": "libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard-devel@1.5.3-105.el7_2.4?arch=i686\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"product": {
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"product_id": "qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm@1.5.3-105.el7_2.4?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"product": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"product_id": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-debuginfo@1.5.3-105.el7_2.4?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"product": {
"name": "qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"product_id": "qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-common@1.5.3-105.el7_2.4?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"product": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"product_id": "qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-img@1.5.3-105.el7_2.4?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"product": {
"name": "qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"product_id": "qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-tools@1.5.3-105.el7_2.4?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-10:1.5.3-105.el7_2.4.x86_64",
"product": {
"name": "libcacard-10:1.5.3-105.el7_2.4.x86_64",
"product_id": "libcacard-10:1.5.3-105.el7_2.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard@1.5.3-105.el7_2.4?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"product": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"product_id": "libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard-tools@1.5.3-105.el7_2.4?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"product": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"product_id": "libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard-devel@1.5.3-105.el7_2.4?arch=x86_64\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc",
"product": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc",
"product_id": "libcacard-10:1.5.3-105.el7_2.4.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard@1.5.3-105.el7_2.4?arch=ppc\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"product": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"product_id": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard-devel@1.5.3-105.el7_2.4?arch=ppc\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"product": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"product_id": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-debuginfo@1.5.3-105.el7_2.4?arch=ppc\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64",
"product": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64",
"product_id": "libcacard-10:1.5.3-105.el7_2.4.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard@1.5.3-105.el7_2.4?arch=ppc64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"product": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"product_id": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard-devel@1.5.3-105.el7_2.4?arch=ppc64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"product": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"product_id": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-debuginfo@1.5.3-105.el7_2.4?arch=ppc64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"product": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"product_id": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard-tools@1.5.3-105.el7_2.4?arch=ppc64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"product": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"product_id": "qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-img@1.5.3-105.el7_2.4?arch=ppc64\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"product": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"product_id": "libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard@1.5.3-105.el7_2.4?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"product": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"product_id": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-debuginfo@1.5.3-105.el7_2.4?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"product": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"product_id": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard-devel@1.5.3-105.el7_2.4?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"product": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"product_id": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard-tools@1.5.3-105.el7_2.4?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"product": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"product_id": "qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-img@1.5.3-105.el7_2.4?arch=ppc64le\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src"
},
"product_reference": "qemu-kvm-10:1.5.3-105.el7_2.4.src",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Client-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src"
},
"product_reference": "qemu-kvm-10:1.5.3-105.el7_2.4.src",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Client-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src"
},
"product_reference": "qemu-kvm-10:1.5.3-105.el7_2.4.src",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src"
},
"product_reference": "qemu-kvm-10:1.5.3-105.el7_2.4.src",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Server-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src"
},
"product_reference": "qemu-kvm-10:1.5.3-105.el7_2.4.src",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src"
},
"product_reference": "qemu-kvm-10:1.5.3-105.el7_2.4.src",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Workstation-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src"
},
"product_reference": "qemu-kvm-10:1.5.3-105.el7_2.4.src",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64"
},
"product_reference": "qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.2.Z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Qinghao Tang",
"Wei Xiao"
],
"organization": "360.cn Marvel Team"
}
],
"cve": "CVE-2016-3710",
"discovery_date": "2016-04-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1331401"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read/write access flaw was found in the way QEMU\u0027s VGA emulation with VESA BIOS Extensions (VBE) support performed read/write operations using I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host\u0027s QEMU process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "qemu: incorrect banked access bounds checking in vga module",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Client-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Client-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Client-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Client-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Client-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Client-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7ComputeNode-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7ComputeNode-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7ComputeNode-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7ComputeNode-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7ComputeNode-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Server-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Server-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Server-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Server-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Server-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Server-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Workstation-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Workstation-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-3710"
},
{
"category": "external",
"summary": "RHBZ#1331401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1331401"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-3710",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3710"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-3710",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3710"
}
],
"release_date": "2016-05-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2016-05-09T15:27:07+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.",
"product_ids": [
"7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Client-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Client-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Client-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Client-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Client-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Client-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7ComputeNode-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7ComputeNode-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7ComputeNode-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7ComputeNode-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7ComputeNode-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Server-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Server-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Server-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Server-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Server-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Server-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Workstation-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Workstation-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2016:0724"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.5,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:A/AC:H/Au:S/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Client-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Client-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Client-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Client-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Client-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Client-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Client-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Client-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Client-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7ComputeNode-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7ComputeNode-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7ComputeNode-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7ComputeNode-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7ComputeNode-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7ComputeNode-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7ComputeNode-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7ComputeNode-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7ComputeNode-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Server-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Server-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Server-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Server-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Server-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Server-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Server-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Server-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Server-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Workstation-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.i686",
"7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-optional-7.2.Z:libcacard-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.i686",
"7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-optional-7.2.Z:libcacard-devel-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-optional-7.2.Z:libcacard-tools-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-optional-7.2.Z:qemu-img-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.src",
"7Workstation-optional-7.2.Z:qemu-kvm-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:qemu-kvm-common-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.i686",
"7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc",
"7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64",
"7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.ppc64le",
"7Workstation-optional-7.2.Z:qemu-kvm-debuginfo-10:1.5.3-105.el7_2.4.x86_64",
"7Workstation-optional-7.2.Z:qemu-kvm-tools-10:1.5.3-105.el7_2.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "qemu: incorrect banked access bounds checking in vga module"
}
]
}
RHSA-2016:0725
Vulnerability from csaf_redhat - Published: 2016-05-09 15:11 - Updated: 2025-11-21 17:56Summary
Red Hat Security Advisory: qemu-kvm-rhev security update
Severity
Important
Notes
Topic: An update for qemu-kvm-rhev is now available for Red Hat Enterprise Virtualization.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on AMD64 and Intel 64 systems. The qemu-kvm-rhev package provides the user-space component for running virtual machines using KVM in environments managed by Red Hat Enterprise Virtualization Manager.
Security Fix(es):
* An out-of-bounds read/write access flaw was found in the way QEMU's VGA emulation with VESA BIOS Extensions (VBE) support performed read/write operations via I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host's QEMU process. (CVE-2016-3710)
Red Hat would like to thank Wei Xiao (360 Marvel Team) and Qinghao Tang (360 Marvel Team) for reporting this issue.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
An out-of-bounds read/write access flaw was found in the way QEMU's VGA emulation with VESA BIOS Extensions (VBE) support performed read/write operations using I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host's QEMU process.
7.6 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHEV-Agents-7:libcacard-devel-rhev-10:2.3.0-31.el7_2.13.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Agents-7:libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Agents-7:libcacard-rhev-10:2.3.0-31.el7_2.13.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Agents-7:libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Agents-7:libcacard-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Agents-7:libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Agents-7:qemu-img-rhev-10:2.3.0-31.el7_2.13.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Agents-7:qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Agents-7:qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Agents-7:qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Agents-7:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Agents-7:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Agents-7:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Agents-7:qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Agents-7:qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Agents-7:qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-Agents-7:qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
8 references
Acknowledgments
360.cn Marvel Team
Qinghao Tang
Wei Xiao
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for qemu-kvm-rhev is now available for Red Hat Enterprise Virtualization.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on AMD64 and Intel 64 systems. The qemu-kvm-rhev package provides the user-space component for running virtual machines using KVM in environments managed by Red Hat Enterprise Virtualization Manager.\n\nSecurity Fix(es):\n\n* An out-of-bounds read/write access flaw was found in the way QEMU\u0027s VGA emulation with VESA BIOS Extensions (VBE) support performed read/write operations via I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host\u0027s QEMU process. (CVE-2016-3710)\n\nRed Hat would like to thank Wei Xiao (360 Marvel Team) and Qinghao Tang (360 Marvel Team) for reporting this issue.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2016:0725",
"url": "https://access.redhat.com/errata/RHSA-2016:0725"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1331401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1331401"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_0725.json"
}
],
"title": "Red Hat Security Advisory: qemu-kvm-rhev security update",
"tracking": {
"current_release_date": "2025-11-21T17:56:03+00:00",
"generator": {
"date": "2025-11-21T17:56:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2016:0725",
"initial_release_date": "2016-05-09T15:11:45+00:00",
"revision_history": [
{
"date": "2016-05-09T15:11:45+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2016-05-09T15:11:45+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:56:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHEV-H and VDSM for 7 Hosts",
"product": {
"name": "RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::hypervisor"
}
}
}
],
"category": "product_family",
"name": "Red Hat Virtualization"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64",
"product": {
"name": "qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64",
"product_id": "qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-rhev-debuginfo@2.3.0-31.el7_2.13?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product": {
"name": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_id": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-rhev@2.3.0-31.el7_2.13?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product": {
"name": "qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_id": "qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-img-rhev@2.3.0-31.el7_2.13?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product": {
"name": "libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_id": "libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard-devel-rhev@2.3.0-31.el7_2.13?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product": {
"name": "libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_id": "libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard-rhev@2.3.0-31.el7_2.13?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product": {
"name": "qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_id": "qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-common-rhev@2.3.0-31.el7_2.13?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product": {
"name": "qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_id": "qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-tools-rhev@2.3.0-31.el7_2.13?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product": {
"name": "libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_id": "libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard-tools-rhev@2.3.0-31.el7_2.13?arch=x86_64\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src",
"product": {
"name": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src",
"product_id": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-rhev@2.3.0-31.el7_2.13?arch=src\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product": {
"name": "qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product_id": "qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-tools-rhev@2.3.0-31.el7_2.13?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product": {
"name": "qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product_id": "qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-common-rhev@2.3.0-31.el7_2.13?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.ppc64le",
"product": {
"name": "qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.ppc64le",
"product_id": "qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-rhev-debuginfo@2.3.0-31.el7_2.13?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-img-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product": {
"name": "qemu-img-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product_id": "qemu-img-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-img-rhev@2.3.0-31.el7_2.13?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-devel-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product": {
"name": "libcacard-devel-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product_id": "libcacard-devel-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard-devel-rhev@2.3.0-31.el7_2.13?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product": {
"name": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product_id": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-rhev@2.3.0-31.el7_2.13?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product": {
"name": "libcacard-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product_id": "libcacard-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard-tools-rhev@2.3.0-31.el7_2.13?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product": {
"name": "libcacard-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product_id": "libcacard-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard-rhev@2.3.0-31.el7_2.13?arch=ppc64le\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-rhev-10:2.3.0-31.el7_2.13.ppc64le as a component of RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7:libcacard-devel-rhev-10:2.3.0-31.el7_2.13.ppc64le"
},
"product_reference": "libcacard-devel-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"relates_to_product_reference": "7Server-RHEV-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64 as a component of RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7:libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64"
},
"product_reference": "libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64",
"relates_to_product_reference": "7Server-RHEV-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-rhev-10:2.3.0-31.el7_2.13.ppc64le as a component of RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7:libcacard-rhev-10:2.3.0-31.el7_2.13.ppc64le"
},
"product_reference": "libcacard-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"relates_to_product_reference": "7Server-RHEV-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64 as a component of RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7:libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64"
},
"product_reference": "libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64",
"relates_to_product_reference": "7Server-RHEV-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le as a component of RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7:libcacard-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le"
},
"product_reference": "libcacard-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"relates_to_product_reference": "7Server-RHEV-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64 as a component of RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7:libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64"
},
"product_reference": "libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"relates_to_product_reference": "7Server-RHEV-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-rhev-10:2.3.0-31.el7_2.13.ppc64le as a component of RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7:qemu-img-rhev-10:2.3.0-31.el7_2.13.ppc64le"
},
"product_reference": "qemu-img-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"relates_to_product_reference": "7Server-RHEV-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64 as a component of RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7:qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64"
},
"product_reference": "qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64",
"relates_to_product_reference": "7Server-RHEV-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.ppc64le as a component of RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7:qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.ppc64le"
},
"product_reference": "qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"relates_to_product_reference": "7Server-RHEV-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64 as a component of RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7:qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64"
},
"product_reference": "qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64",
"relates_to_product_reference": "7Server-RHEV-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.ppc64le as a component of RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.ppc64le"
},
"product_reference": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"relates_to_product_reference": "7Server-RHEV-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src as a component of RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src"
},
"product_reference": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src",
"relates_to_product_reference": "7Server-RHEV-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64 as a component of RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64"
},
"product_reference": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64",
"relates_to_product_reference": "7Server-RHEV-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.ppc64le as a component of RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7:qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.ppc64le"
},
"product_reference": "qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.ppc64le",
"relates_to_product_reference": "7Server-RHEV-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64 as a component of RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7:qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64"
},
"product_reference": "qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64",
"relates_to_product_reference": "7Server-RHEV-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le as a component of RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7:qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le"
},
"product_reference": "qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"relates_to_product_reference": "7Server-RHEV-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64 as a component of RHEV-H and VDSM for 7 Hosts",
"product_id": "7Server-RHEV-Agents-7:qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64"
},
"product_reference": "qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"relates_to_product_reference": "7Server-RHEV-Agents-7"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Qinghao Tang",
"Wei Xiao"
],
"organization": "360.cn Marvel Team"
}
],
"cve": "CVE-2016-3710",
"discovery_date": "2016-04-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1331401"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read/write access flaw was found in the way QEMU\u0027s VGA emulation with VESA BIOS Extensions (VBE) support performed read/write operations using I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host\u0027s QEMU process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "qemu: incorrect banked access bounds checking in vga module",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHEV-Agents-7:libcacard-devel-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:libcacard-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:libcacard-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:qemu-img-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src",
"7Server-RHEV-Agents-7:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-3710"
},
{
"category": "external",
"summary": "RHBZ#1331401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1331401"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-3710",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3710"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-3710",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3710"
}
],
"release_date": "2016-05-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2016-05-09T15:11:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.",
"product_ids": [
"7Server-RHEV-Agents-7:libcacard-devel-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:libcacard-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:libcacard-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:qemu-img-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src",
"7Server-RHEV-Agents-7:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2016:0725"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.5,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:A/AC:H/Au:S/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-RHEV-Agents-7:libcacard-devel-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:libcacard-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:libcacard-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:qemu-img-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src",
"7Server-RHEV-Agents-7:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RHEV-Agents-7:qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.ppc64le",
"7Server-RHEV-Agents-7:qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "qemu: incorrect banked access bounds checking in vga module"
}
]
}
RHSA-2016:0997
Vulnerability from csaf_redhat - Published: 2016-05-10 04:19 - Updated: 2025-11-21 17:56Summary
Red Hat Security Advisory: qemu-kvm security update
Severity
Important
Notes
Topic: An update for qemu-kvm is now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on AMD64 and Intel 64 systems. The qemu-kvm packages provide the user-space component for running virtual machines using KVM.
Security Fix(es):
* An out-of-bounds read/write access flaw was found in the way QEMU's VGA emulation with VESA BIOS Extensions (VBE) support performed read/write operations via I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host's QEMU process. (CVE-2016-3710)
Red Hat would like to thank Wei Xiao (360 Marvel Team) and Qinghao Tang (360 Marvel Team) for reporting this issue.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
An out-of-bounds read/write access flaw was found in the way QEMU's VGA emulation with VESA BIOS Extensions (VBE) support performed read/write operations using I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host's QEMU process.
7.6 (High)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Client-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
8 references
Acknowledgments
360.cn Marvel Team
Qinghao Tang
Wei Xiao
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for qemu-kvm is now available for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on AMD64 and Intel 64 systems. The qemu-kvm packages provide the user-space component for running virtual machines using KVM.\n\nSecurity Fix(es):\n\n* An out-of-bounds read/write access flaw was found in the way QEMU\u0027s VGA emulation with VESA BIOS Extensions (VBE) support performed read/write operations via I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host\u0027s QEMU process. (CVE-2016-3710)\n\nRed Hat would like to thank Wei Xiao (360 Marvel Team) and Qinghao Tang (360 Marvel Team) for reporting this issue.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2016:0997",
"url": "https://access.redhat.com/errata/RHSA-2016:0997"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1331401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1331401"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_0997.json"
}
],
"title": "Red Hat Security Advisory: qemu-kvm security update",
"tracking": {
"current_release_date": "2025-11-21T17:56:07+00:00",
"generator": {
"date": "2025-11-21T17:56:07+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2016:0997",
"initial_release_date": "2016-05-10T04:19:05+00:00",
"revision_history": [
{
"date": "2016-05-10T04:19:05+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2016-05-10T04:19:05+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:56:07+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.8.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.8.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.8.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.8.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"product": {
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"product_id": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-guest-agent@0.12.1.2-2.491.el6_8.1?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64",
"product": {
"name": "qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64",
"product_id": "qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-tools@0.12.1.2-2.491.el6_8.1?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"product": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"product_id": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-debuginfo@0.12.1.2-2.491.el6_8.1?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"product": {
"name": "qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"product_id": "qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-img@0.12.1.2-2.491.el6_8.1?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"product": {
"name": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"product_id": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm@0.12.1.2-2.491.el6_8.1?arch=x86_64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"product": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"product_id": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-debuginfo@0.12.1.2-2.491.el6_8.1?arch=i686\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"product": {
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"product_id": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-guest-agent@0.12.1.2-2.491.el6_8.1?arch=i686\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"product": {
"name": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"product_id": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm@0.12.1.2-2.491.el6_8.1?arch=src\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"product": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"product_id": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-debuginfo@0.12.1.2-2.491.el6_8.1?arch=ppc64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"product": {
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"product_id": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-guest-agent@0.12.1.2-2.491.el6_8.1?arch=ppc64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "ppc64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"relates_to_product_reference": "6Client-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"relates_to_product_reference": "6Client-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6Client-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6Client-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src"
},
"product_reference": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"relates_to_product_reference": "6Client-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6Client-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"relates_to_product_reference": "6Client-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"relates_to_product_reference": "6Client-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6Client-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6Client-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"relates_to_product_reference": "6ComputeNode-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"relates_to_product_reference": "6ComputeNode-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6ComputeNode-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6ComputeNode-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src"
},
"product_reference": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"relates_to_product_reference": "6ComputeNode-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6ComputeNode-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"relates_to_product_reference": "6ComputeNode-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"relates_to_product_reference": "6ComputeNode-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6ComputeNode-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6ComputeNode-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"relates_to_product_reference": "6Server-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"relates_to_product_reference": "6Server-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6Server-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6Server-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src"
},
"product_reference": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"relates_to_product_reference": "6Server-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6Server-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"relates_to_product_reference": "6Server-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"relates_to_product_reference": "6Server-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6Server-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6Server-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"relates_to_product_reference": "6Workstation-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"relates_to_product_reference": "6Workstation-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6Workstation-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6Workstation-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src"
},
"product_reference": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"relates_to_product_reference": "6Workstation-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6Workstation-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"relates_to_product_reference": "6Workstation-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"relates_to_product_reference": "6Workstation-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6Workstation-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64"
},
"product_reference": "qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64",
"relates_to_product_reference": "6Workstation-6.8.z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Qinghao Tang",
"Wei Xiao"
],
"organization": "360.cn Marvel Team"
}
],
"cve": "CVE-2016-3710",
"discovery_date": "2016-04-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1331401"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read/write access flaw was found in the way QEMU\u0027s VGA emulation with VESA BIOS Extensions (VBE) support performed read/write operations using I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host\u0027s QEMU process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "qemu: incorrect banked access bounds checking in vga module",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"6Client-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Client-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Client-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Client-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"6Client-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Client-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"6Client-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Client-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Client-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6ComputeNode-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"6ComputeNode-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6ComputeNode-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6ComputeNode-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6ComputeNode-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"6ComputeNode-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6ComputeNode-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"6ComputeNode-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6ComputeNode-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6ComputeNode-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Server-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"6Server-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Server-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Server-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Server-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"6Server-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Server-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"6Server-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Server-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Server-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Workstation-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"6Workstation-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Workstation-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Workstation-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Workstation-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"6Workstation-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Workstation-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"6Workstation-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Workstation-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Workstation-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-3710"
},
{
"category": "external",
"summary": "RHBZ#1331401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1331401"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-3710",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3710"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-3710",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3710"
}
],
"release_date": "2016-05-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2016-05-10T04:19:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.",
"product_ids": [
"6Client-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"6Client-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Client-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Client-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Client-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"6Client-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Client-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"6Client-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Client-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Client-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6ComputeNode-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"6ComputeNode-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6ComputeNode-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6ComputeNode-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6ComputeNode-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"6ComputeNode-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6ComputeNode-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"6ComputeNode-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6ComputeNode-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6ComputeNode-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Server-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"6Server-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Server-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Server-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Server-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"6Server-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Server-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"6Server-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Server-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Server-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Workstation-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"6Workstation-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Workstation-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Workstation-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Workstation-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"6Workstation-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Workstation-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"6Workstation-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Workstation-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Workstation-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2016:0997"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.5,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:A/AC:H/Au:S/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"6Client-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Client-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Client-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Client-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"6Client-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Client-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"6Client-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Client-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Client-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6ComputeNode-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"6ComputeNode-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6ComputeNode-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6ComputeNode-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6ComputeNode-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"6ComputeNode-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6ComputeNode-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"6ComputeNode-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6ComputeNode-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6ComputeNode-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Server-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"6Server-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Server-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Server-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Server-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"6Server-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Server-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"6Server-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Server-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Server-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Workstation-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.i686",
"6Workstation-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Workstation-6.8.z:qemu-guest-agent-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Workstation-6.8.z:qemu-img-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Workstation-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.src",
"6Workstation-6.8.z:qemu-kvm-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Workstation-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.i686",
"6Workstation-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.ppc64",
"6Workstation-6.8.z:qemu-kvm-debuginfo-2:0.12.1.2-2.491.el6_8.1.x86_64",
"6Workstation-6.8.z:qemu-kvm-tools-2:0.12.1.2-2.491.el6_8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "qemu: incorrect banked access bounds checking in vga module"
}
]
}
RHSA-2016:0999
Vulnerability from csaf_redhat - Published: 2016-05-10 04:48 - Updated: 2025-11-21 17:56Summary
Red Hat Security Advisory: qemu-kvm-rhev security update
Severity
Important
Notes
Topic: An update for qemu-kvm-rhev is now available for Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on AMD64 and Intel 64 systems. The qemu-kvm-rhev package provides the user-space component for running virtual machines using KVM in environments managed by Red Hat Enterprise Virtualization Manager.
Security Fix(es):
* An out-of-bounds read/write access flaw was found in the way QEMU's VGA emulation with VESA BIOS Extensions (VBE) support performed read/write operations via I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host's QEMU process. (CVE-2016-3710)
Red Hat would like to thank Wei Xiao (360 Marvel Team) and Qinghao Tang (360 Marvel Team) for reporting this issue.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
An out-of-bounds read/write access flaw was found in the way QEMU's VGA emulation with VESA BIOS Extensions (VBE) support performed read/write operations using I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host's QEMU process.
7.6 (High)
Affected products
Fixed
9 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOS-5.0:libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOS-5.0:libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOS-5.0:libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOS-5.0:qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOS-5.0:qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOS-5.0:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOS-5.0:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOS-5.0:qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOS-5.0:qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
8 references
Acknowledgments
360.cn Marvel Team
Qinghao Tang
Wei Xiao
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for qemu-kvm-rhev is now available for Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on AMD64 and Intel 64 systems. The qemu-kvm-rhev package provides the user-space component for running virtual machines using KVM in environments managed by Red Hat Enterprise Virtualization Manager.\n\nSecurity Fix(es):\n\n* An out-of-bounds read/write access flaw was found in the way QEMU\u0027s VGA emulation with VESA BIOS Extensions (VBE) support performed read/write operations via I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host\u0027s QEMU process. (CVE-2016-3710)\n\nRed Hat would like to thank Wei Xiao (360 Marvel Team) and Qinghao Tang (360 Marvel Team) for reporting this issue.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2016:0999",
"url": "https://access.redhat.com/errata/RHSA-2016:0999"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1331401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1331401"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_0999.json"
}
],
"title": "Red Hat Security Advisory: qemu-kvm-rhev security update",
"tracking": {
"current_release_date": "2025-11-21T17:56:07+00:00",
"generator": {
"date": "2025-11-21T17:56:07+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2016:0999",
"initial_release_date": "2016-05-10T04:48:30+00:00",
"revision_history": [
{
"date": "2016-05-10T04:48:30+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2016-05-10T04:48:30+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:56:07+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product": {
"name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openstack:5::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenStack Platform"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64",
"product": {
"name": "qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64",
"product_id": "qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-rhev-debuginfo@2.3.0-31.el7_2.13?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product": {
"name": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_id": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-rhev@2.3.0-31.el7_2.13?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product": {
"name": "qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_id": "qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-img-rhev@2.3.0-31.el7_2.13?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product": {
"name": "libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_id": "libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard-devel-rhev@2.3.0-31.el7_2.13?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product": {
"name": "libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_id": "libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard-rhev@2.3.0-31.el7_2.13?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product": {
"name": "qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_id": "qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-common-rhev@2.3.0-31.el7_2.13?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product": {
"name": "qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_id": "qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-tools-rhev@2.3.0-31.el7_2.13?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product": {
"name": "libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_id": "libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libcacard-tools-rhev@2.3.0-31.el7_2.13?arch=x86_64\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src",
"product": {
"name": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src",
"product_id": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-rhev@2.3.0-31.el7_2.13?arch=src\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64 as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64"
},
"product_reference": "libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64 as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64"
},
"product_reference": "libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64 as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64"
},
"product_reference": "libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64 as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64"
},
"product_reference": "qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64 as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64"
},
"product_reference": "qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src"
},
"product_reference": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64 as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64"
},
"product_reference": "qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64 as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64"
},
"product_reference": "qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64 as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64"
},
"product_reference": "qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Qinghao Tang",
"Wei Xiao"
],
"organization": "360.cn Marvel Team"
}
],
"cve": "CVE-2016-3710",
"discovery_date": "2016-04-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1331401"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read/write access flaw was found in the way QEMU\u0027s VGA emulation with VESA BIOS Extensions (VBE) support performed read/write operations using I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host\u0027s QEMU process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "qemu: incorrect banked access bounds checking in vga module",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOS-5.0:libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src",
"7Server-RH7-RHOS-5.0:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-3710"
},
{
"category": "external",
"summary": "RHBZ#1331401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1331401"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-3710",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3710"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-3710",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3710"
}
],
"release_date": "2016-05-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2016-05-10T04:48:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.",
"product_ids": [
"7Server-RH7-RHOS-5.0:libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src",
"7Server-RH7-RHOS-5.0:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2016:0999"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.5,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:A/AC:H/Au:S/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOS-5.0:libcacard-devel-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:libcacard-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:libcacard-tools-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:qemu-img-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:qemu-kvm-common-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.src",
"7Server-RH7-RHOS-5.0:qemu-kvm-rhev-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:qemu-kvm-rhev-debuginfo-10:2.3.0-31.el7_2.13.x86_64",
"7Server-RH7-RHOS-5.0:qemu-kvm-tools-rhev-10:2.3.0-31.el7_2.13.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "qemu: incorrect banked access bounds checking in vga module"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…