CVE-2016-7422 (retired)

Priority
Description
The virtqueue_map_desc function in hw/virtio/virtio.c in QEMU (aka Quick
Emulator) allows local guest OS administrators to cause a denial of service
(NULL pointer dereference and QEMU process crash) via a large I/O
descriptor buffer length value.
Package
Source: qemu (LP Ubuntu Debian)
Upstream:needed
Ubuntu 14.04 LTS (Trusty Tahr):not-affected (code not present)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (code not present)
Patches:
Upstream:http://git.qemu.org/?p=qemu.git;a=commit;h=973e7170dddefb491a48df5cba33b2ae151013a0
Package
Upstream:not-affected
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):DNE
More Information

Updated: 2019-03-26 12:22:47 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)