CVE-2017-6058 (retired)

Priority
Description
Buffer overflow in NetRxPkt::ehdr_buf in hw/net/net_rx_pkt.c in QEMU (aka
Quick Emulator), when the VLANSTRIP feature is enabled on the vmxnet3
device, allows remote attackers to cause a denial of service (out-of-bounds
access and QEMU process crash) via vectors related to VLAN stripping.
Package
Source: qemu (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (code not present)
Patches:
Upstream:http://git.qemu-project.org/?p=qemu.git;a=commit;h=df8bf7a7fe75eb5d5caffa55f5cd4292b757aea6
Package
Upstream:needs-triage
Ubuntu 16.04 LTS (Xenial Xerus):DNE
More Information

Updated: 2019-09-19 16:04:07 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)