FreeBSD : qemu -- denial of service vulnerability in Human Monitor Interface support (62ab8707-b1bc-11e5-9728-002590263bf5)
Medium Nessus Plugin ID 87695
The remote FreeBSD host is missing one or more security-related updates.
Prasad J Pandit, Red Hat Product Security Team, reports : Qemu emulator built with the Human Monitor Interface(HMP) support is vulnerable to an OOB write issue. It occurs while processing 'sendkey' command in hmp_sendkey routine, if the command argument is longer than the 'keyname_buf' buffer size. A user/process could use this flaw to crash the Qemu process instance resulting in DoS.