CVE-2016-0749

CWE-119Buffer OverflowCWE-131CWE-122Heap-based Buffer Overflow10 documents8 sources
Severity
9.8CRITICAL
EPSS
16.0%
top 5.23%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
10
Debian Debian LinuxOpensuse LeapOpensuse Opensuse+7 more
Timeline
PublishedJun 9
Latest updateMay 14

Description

The smartcard interaction in SPICE allows remote attackers to cause a denial of service (QEMU-KVM process crash) or possibly execute arbitrary code via vectors related to connecting to a guest VM, which triggers a heap-based buffer overflow.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages8 packages

Debianspice< 0.12.6-4.1+3
Ubuntuspice< 0.12.4-0nocelt2ubuntu1.3+1
NVDopensuse/leap42.1

Also affects: Debian Linux 8.0, Enterprise Linux 6.0, 7.0, 7.2

🔴Vulnerability Details

4
GHSA
GHSA-jvcp-p6pm-47gg: The smartcard interaction in SPICE allows remote attackers to cause a denial of service (QEMU-KVM process crash) or possibly execute arbitrary code vi2022-05-14
OSV
spice vulnerabilities2016-06-21
CVEList
CVE-2016-0749: The smartcard interaction in SPICE allows remote attackers to cause a denial of service (QEMU-KVM process crash) or possibly execute arbitrary code vi2016-06-09
OSV
CVE-2016-0749: The smartcard interaction in SPICE allows remote attackers to cause a denial of service (QEMU-KVM process crash) or possibly execute arbitrary code vi2016-06-09

📋Vendor Advisories

3
Ubuntu
Spice vulnerabilities2016-06-21
Red Hat
spice: heap-based memory corruption within smartcard handling2016-06-06
Debian
CVE-2016-0749: spice - The smartcard interaction in SPICE allows remote attackers to cause a denial of ...2016

💬Community

2
Bugzilla
CVE-2016-0749 spice: heap-based memory corruption within smartcard handling [fedora-all]2016-06-06
Bugzilla
CVE-2016-0749 spice: heap-based memory corruption within smartcard handling2016-01-21
CVE-2016-0749 (CRITICAL CVSS 9.8) | The smartcard interaction in SPICE | cvebase.io