CVE-2012-0029

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Heap-based buffer overflow in the process_tx_desc function in the e1000 emulation (hw/e1000.c) in qemu-kvm 0.12, and possibly other versions, allows guest OS users to cause a denial of service (QEMU crash) and possibly execute arbitrary code via crafted legacy mode packets.

References

http://git.qemu.org/?p=qemu.git;a=log;h=refs/heads/stable-1.0

http://lists.fedoraproject.org/pipermail/package-announce/2012-June/081972.html

http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00002.html

http://lists.opensuse.org/opensuse-updates/2012-02/msg00009.html

http://rhn.redhat.com/errata/RHSA-2012-0370.html

http://secunia.com/advisories/47740

http://secunia.com/advisories/47741

http://secunia.com/advisories/47992

http://secunia.com/advisories/48318

http://secunia.com/advisories/50913

http://www.redhat.com/support/errata/RHSA-2012-0050.html

http://www.securityfocus.com/bid/51642

http://www.ubuntu.com/usn/USN-1339-1

https://bugzilla.redhat.com/show_bug.cgi?id=772075

https://exchange.xforce.ibmcloud.com/vulnerabilities/72656

Details

Source: MITRE

Published: 2012-01-27

Updated: 2017-08-29

Type: CWE-119

Risk Information

CVSS v2

Base Score: 7.4

Vector: AV:A/AC:M/Au:S/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 4.4

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:kvm_group:qemu-kvm:0.12:*:*:*:*:*:*:*

Tenable Plugins

View all (28 total)

IDNameProductFamilySeverity
84140OracleVM 3.2 : xen (OVMSA-2015-0068) (POODLE) (Venom)NessusOracleVM Local Security Checks
low
79283RHEL 5 : rhev-hypervisor5 (RHSA-2012:0168)NessusRed Hat Local Security Checks
high
79282RHEL 6 : rhev-hypervisor6 (RHSA-2012:0109)NessusRed Hat Local Security Checks
high
76005openSUSE Security Update : qemu (openSUSE-SU-2012:0267-1)NessusSuSE Local Security Checks
high
75931openSUSE Security Update : libvirt (openSUSE-SU-2012:0347-1)NessusSuSE Local Security Checks
high
75889openSUSE Security Update : kvm (openSUSE-SU-2012:0207-1)NessusSuSE Local Security Checks
high
74841openSUSE Security Update : kvm (openSUSE-2012-84)NessusSuSE Local Security Checks
high
74683openSUSE Security Update : xen (openSUSE-2012-404)NessusSuSE Local Security Checks
high
74606openSUSE Security Update : Xen (openSUSE-SU-2012:0548-1)NessusSuSE Local Security Checks
high
68493Oracle Linux 5 : xen (ELSA-2012-0370)NessusOracle Linux Local Security Checks
high
68434Oracle Linux 5 : kvm (ELSA-2012-0051)NessusOracle Linux Local Security Checks
high
68433Oracle Linux 6 : qemu-kvm (ELSA-2012-0050)NessusOracle Linux Local Security Checks
high
64021RHEL 5 : kvm (RHSA-2012:0051)NessusRed Hat Local Security Checks
high
64020RHEL 6 : qemu-kvm (RHSA-2012:0050)NessusRed Hat Local Security Checks
high
62634GLSA-201210-04 : qemu-kvm: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
61280Scientific Linux Security Update : xen on SL5.x i386/x86_64 (20120307)NessusScientific Linux Local Security Checks
high
61222Scientific Linux Security Update : kvm on SL5.x x86_64 (20120123)NessusScientific Linux Local Security Checks
high
59420Fedora 15 : qemu-0.14.0-9.fc15 (2012-8604)NessusFedora Local Security Checks
high
59418Fedora 16 : qemu-0.15.1-5.fc16 (2012-8592)NessusFedora Local Security Checks
high
58396SuSE 11.1 Security Update : Xen and libvirt (SAT Patch Number 5796)NessusSuSE Local Security Checks
high
58395SuSE 11.1 Security Update : Xen and libvirt (SAT Patch Number 5796)NessusSuSE Local Security Checks
high
58285RHEL 5 : xen (RHSA-2012:0370)NessusRed Hat Local Security Checks
high
57827Debian DSA-2404-1 : xen-qemu-dm-4.0 - buffer overflowNessusDebian Local Security Checks
high
57736Debian DSA-2396-1 : qemu-kvm - buffer underflowNessusDebian Local Security Checks
high
57725SuSE 11.1 Security Update : KVM (SAT Patch Number 5655)NessusSuSE Local Security Checks
high
57668CentOS 5 : kvm (CESA-2012:0051)NessusCentOS Local Security Checks
high
57667CentOS 6 : qemu-kvm (CESA-2012:0050)NessusCentOS Local Security Checks
high
57663Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : qemu-kvm vulnerability (USN-1339-1)NessusUbuntu Local Security Checks
high