QEMU 'scsi_disk_emulate_command()' Function Local Denial of Service Vulnerability

Bugtraq ID: 49545
Class: Boundary Condition Error
CVE: CVE-2011-3346
Remote: No
Local: Yes
Published: Sep 09 2011 12:00AM
Updated: Dec 20 2011 07:09PM
Credit: Paolo Bonzini
Vulnerable: RedHat Enterprise Linux Virtualization 5 server
RedHat Enterprise Linux Desktop Multi OS 5 client
RedHat Enterprise Linux 5.0
Red Hat Enterprise Linux Desktop 5 client
Red Hat Enterprise Linux 5 Server
QEMU QEMU 0.10.6
QEMU QEMU 0.9.1
QEMU QEMU 0.9
QEMU QEMU 0.8.2
QEMU QEMU 0.6.1
QEMU QEMU 0.10
QEMU QEMU 0
Oracle Enterprise Linux 5
Avaya Aura System Platform 6.0.2
Avaya Aura System Platform 6.0.1
Avaya Aura System Platform 6.0 SP3
Avaya Aura System Platform 6.0 SP2
Avaya Aura System Platform 6.0
Avaya Aura Messaging 6.0.1
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
Avaya Aura Messaging 6.0
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
Avaya Aura Communication Manager 6.0.1
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
Avaya Aura Communication Manager 6.0
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus