CVE-2011-4111: Buffer overflow in the ccid_card_vscard_handle_message function in hw/ccid-card-passthru.c in QEMU before 0.15.2 and 1.x before 1.0-rc4 allows remote attackers…

medium6.8CVSS 3.1

AVAACHAuNCCICAC

Buffer overflow in the ccid_card_vscard_handle_message function in hw/ccid-card-passthru.c in QEMU before 0.15.2 and 1.x before 1.0-rc4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted VSC_ATR message.

Affected

15 ranges

Vendor	Product	Version range	Fixed in
debian	qemu	< qemu 0.15.1+dfsg-2 (bookworm)	qemu 0.15.1+dfsg-2 (bookworm)
debian	xen	< qemu 0.15.1+dfsg-2 (bookworm)	qemu 0.15.1+dfsg-2 (bookworm)
qemu	qemu	<= 0.15.1	—
qemu	qemu	—	—
qemu	qemu	—	—
qemu	qemu	>= 0 < 0.15.1+dfsg-2	0.15.1+dfsg-2
qemu	qemu	>= 0 < 0.15.1+dfsg-2	0.15.1+dfsg-2
qemu	qemu	>= 0 < 0.15.1+dfsg-2	0.15.1+dfsg-2
qemu	qemu	>= 0 < 0.15.1+dfsg-2	0.15.1+dfsg-2
redhat	enterprise_linux	—	—
redhat	enterprise_linux_server_supplementary	—	—
xen	xen	>= 0 < 4.4.0-1	4.4.0-1
xen	xen	>= 0 < 4.4.0-1	4.4.0-1
xen	xen	>= 0 < 4.4.0-1	4.4.0-1
xen	xen	>= 0 < 4.4.0-1	4.4.0-1

CVSS provenance

nvd6.8MEDIUMAV:A/AC:H/Au:N/C:C/I:C/A:C

osv6.8MEDIUM