CVE-2012-6075
published 2013-02-13CVE-2012-6075: Buffer overflow in the e1000_receive function in the e1000 device driver (hw/e1000.c) in QEMU 1.3.0-rc2 and other versions, when the SBP and LPE flags are…
critical9.3CVSS 3.1
AVNACMAuNCCICAC
Buffer overflow in the e1000_receive function in the e1000 device driver (hw/e1000.c) in QEMU 1.3.0-rc2 and other versions, when the SBP and LPE flags are disabled, allows remote attackers to cause a denial of service (guest OS crash) and possibly execute arbitrary guest code via a large packet.
Affected
33 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | qemu | < qemu 1.1.2+dfsg-4 (bookworm) | qemu 1.1.2+dfsg-4 (bookworm) |
| debian | xen | < qemu 1.1.2+dfsg-4 (bookworm) | qemu 1.1.2+dfsg-4 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| opensuse | opensuse | — | — |
| opensuse | opensuse | — | — |
| qemu | qemu | < 1.3.0 | 1.3.0 |
| qemu | qemu | >= 0 < 1.1.2+dfsg-4 | 1.1.2+dfsg-4 |
| qemu | qemu | >= 0 < 1.1.2+dfsg-4 | 1.1.2+dfsg-4 |
| qemu | qemu | >= 0 < 1.1.2+dfsg-4 | 1.1.2+dfsg-4 |
| qemu | qemu | >= 0 < 1.1.2+dfsg-4 | 1.1.2+dfsg-4 |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_eus | — | — |
| redhat | enterprise_linux_eus | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_server_aus | — | — |
| redhat | enterprise_linux_server_aus | — | — |
CVSS provenance
nvd9.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
osv9.3CRITICAL