CVE-2016-3044

CWE-20Improper Input ValidationCWE-284Improper Access ControlCWE-8358 documents7 sources
Severity
6.5MEDIUM
EPSS
0.1%
top 76.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Powerkvm
Timeline
PublishedDec 1
Latest updateMay 14

Description

The Linux kernel component in IBM PowerKVM 2.1 before 2.1.1.3-65.10 and 3.1 before 3.1.0.2 allows guest OS users to cause a denial of service (host OS infinite loop and hang) via unspecified vectors.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:HExploitability: 2.0 | Impact: 4.0

Affected Packages2 packages

Debianlinux< 4.4.6-1+3
NVDibm/powerkvm7 versions+6

🔴Vulnerability Details

3
GHSA
GHSA-86qw-h8w4-3rr4: The Linux kernel component in IBM PowerKVM 22022-05-14
CVEList
CVE-2016-3044: The Linux kernel component in IBM PowerKVM 22016-12-01
OSV
CVE-2016-3044: The Linux kernel component in IBM PowerKVM 22016-12-01

📋Vendor Advisories

2
Red Hat
kernel: Infinite loop vulnerability in KVM2016-07-22
Debian
CVE-2016-3044: linux - The Linux kernel component in IBM PowerKVM 2.1 before 2.1.1.3-65.10 and 3.1 befo...2016

💬Community

2
Bugzilla
CVE-2016-3044 kernel: Infinite loop vulnerability in KVM2016-12-01
Bugzilla
CVE-2016-3044 kernel: Infinite loop vulnerability in KVM [fedora-all]2016-12-01
CVE-2016-3044 (MEDIUM CVSS 6.5) | The Linux kernel component in IBM P | cvebase.io