CVE-2016-3712
published 2016-05-11CVE-2016-3712: Integer overflow in the VGA module in QEMU allows local guest OS users to cause a denial of service (out-of-bounds read and QEMU process crash) by editing VGA…
medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
Integer overflow in the VGA module in QEMU allows local guest OS users to cause a denial of service (out-of-bounds read and QEMU process crash) by editing VGA registers in VBE mode.
Affected
47 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| citrix | citrix_adm | — | — |
| citrix | citrix_hypervisor | — | — |
| citrix | citrix_virtual_apps_and_desktops | — | — |
| citrix | endpoint_management | — | — |
| citrix | netscaler_adc | — | — |
| citrix | netscaler_gateway | — | — |
| citrix | xenserver | <= 7.0 | — |
| citrix | xenserver | — | — |
| debian | debian_linux | — | — |
| debian | qemu | < qemu 1:2.6+dfsg-1 (bookworm) | qemu 1:2.6+dfsg-1 (bookworm) |
| debian | xen | < qemu 1:2.6+dfsg-1 (bookworm) | qemu 1:2.6+dfsg-1 (bookworm) |
| oracle | vm_server | — | — |
| oracle | vm_server | — | — |
| qemu | qemu | <= 2.5.1 | — |
| qemu | qemu | — | — |
| qemu | qemu | >= 0 < 1:2.6+dfsg-1 | 1:2.6+dfsg-1 |
| qemu | qemu | >= 0 < 1:2.6+dfsg-1 | 1:2.6+dfsg-1 |
| qemu | qemu | >= 0 < 1:2.6+dfsg-1 | 1:2.6+dfsg-1 |
| qemu | qemu | >= 0 < 1:2.6+dfsg-1 | 1:2.6+dfsg-1 |
| qemu | qemu | >= 0 < 2.0.0+dfsg-2ubuntu1.24 | 2.0.0+dfsg-2ubuntu1.24 |
| qemu | qemu | >= 0 < 1:2.5+dfsg-5ubuntu10.1 | 1:2.5+dfsg-5ubuntu10.1 |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
osv5.5MEDIUM