The rtl8139_cplus_transmit function in hw/net/rtl8139.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) by leveraging failure to limit the ring descriptor count.

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:L/AC:L/Au:N/C:N/I:N/A:P
Vendors Products
Redhat
  • Openstack
  • Enterprise Linux
  • Virtualization
Opensuse
  • Leap
Qemu
  • Qemu
Debian
  • Debian Linux

Configuration 1 [-]

cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*

Configuration 2 [-]

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Configuration 3 [-]

cpe:2.3:o:opensuse:leap:42.2:*:*:*:*:*:*:*

Configuration 4 [-]

OR cpe:2.3:a:redhat:openstack:6.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*
cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*
cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*
cpe:2.3:a:redhat:openstack:11:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
References
Link Resource
http://lists.opensuse.org/opensuse-updates/2016-12/msg00140.html Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/10/24/2 Mailing List Patch Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/10/24/5 Mailing List Third Party Advisory
http://www.securityfocus.com/bid/93844 Third Party Advisory VDB Entry
https://access.redhat.com/errata/RHSA-2017:2392 Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2408 Third Party Advisory
https://lists.debian.org/debian-lts-announce/2018/11/msg00038.html Mailing List Third Party Advisory
https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg05495.html Patch Third Party Advisory
https://security.gentoo.org/glsa/201611-11 Third Party Advisory
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: redhat

Published: 2016-11-04T21:00:00

Updated: 2018-12-01T10:57:01

Reserved: 2016-10-24T00:00:00

Link: CVE-2016-8910

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2016-11-04T21:59:10.803

Modified: 2023-02-12T23:27:01.953

Link: CVE-2016-8910

JSON object: View

cve-icon Redhat Information

No data.

CWE