CVE-2010-0429 — Redhat Enterprise Virtualization vulnerability

CWE-2646 documents6 sources

Severity

6.6MEDIUMNVD

EPSS

0.1%

top 84.17%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redhat Enterprise Virtualization Redhat Qspice

Timeline

PublishedAug 24

Latest updateMay 2

Description

libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and qspice 0.3.0, does not properly restrict the addresses upon which memory-management actions are performed, which allows guest OS users to cause a denial of service (guest OS crash) or possibly gain privileges via unspecified vectors.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 2.7 | Impact: 10.0

Affected Packages2 packages

▶NVDredhat/enterprise_virtualization2.2

▶NVDredhat/qspice0.3.0

Patches

Patch: rhn.redhat.com ↗Patch: rhn.redhat.com ↗Patch: rhn.redhat.com ↗

🔴Vulnerability Details

GHSA

GHSA-mf73-m82g-g4hv: libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2↗2022-05-02

▶

CVEList

CVE-2010-0429: libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2↗2010-08-24

▶

📋Vendor Advisories

Red Hat

libspice: Relying on guest provided data structures to indicate memory allocation↗2010-08-19

▶

Debian

CVE-2010-0429: spice - libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) in Red Hat...↗2010

▶

💬Community

Bugzilla

CVE-2010-0429 libspice: Relying on guest provided data structures to indicate memory allocation↗2010-02-26

▶