CVE-2016-5403

CWE-400Uncontrolled Resource Consumption14 documents8 sources
Severity
5.5MEDIUM
EPSS
0.1%
top 77.98%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
13
Qemu QemuCanonical Ubuntu LinuxDebian Debian Linux+10 more
Timeline
PublishedAug 2
Latest updateMay 13

Description

The virtqueue_pop function in hw/virtio/virtio.c in QEMU allows local guest OS administrators to cause a denial of service (memory consumption and QEMU process crash) by submitting requests without waiting for completion.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages10 packages

Debianqemu< 1:2.6+dfsg-3.1+3
Ubuntuqemu< 2.0.0+dfsg-2ubuntu1.27+3
NVDqemu/qemu2.6.0+1
NVDoracle/linux5, 6, 7+2

Also affects: Debian Linux 8.0, Ubuntu Linux 12.04, 14.04, 16.04, Enterprise Linux 7.2, 7.3, 7.4, 7.5, 7.6, 7.7

Patches

Patch: xenbits.xen.orgPatch: xenbits.xen.org

🔴Vulnerability Details

5
GHSA
GHSA-w9gj-prpq-pxm9: The virtqueue_pop function in hw/virtio/virtio2022-05-13
OSV
qemu, qemu-kvm vulnerabilities2016-11-09
OSV
qemu, qemu-kvm regression2016-08-12
CVEList
CVE-2016-5403: The virtqueue_pop function in hw/virtio/virtio2016-08-02
OSV
CVE-2016-5403: The virtqueue_pop function in hw/virtio/virtio2016-08-02

📋Vendor Advisories

5
Ubuntu
QEMU vulnerabilities2016-11-09
Ubuntu
QEMU regression2016-08-12
Ubuntu
QEMU vulnerabilities2016-08-04
Red Hat
Qemu: virtio: unbounded memory allocation on host via guest leading to DoS2016-07-27
Debian
CVE-2016-5403: qemu - The virtqueue_pop function in hw/virtio/virtio.c in QEMU allows local guest OS a...2016

💬Community

3
Bugzilla
CVE-2016-5403 xen: Qemu: virtio: unbounded memory allocation on host via guest leading to DoS [fedora-all]2016-07-27
Bugzilla
CVE-2016-5403 Qemu: virtio: unbounded memory allocation on host via guest leading to DoS [fedora-all]2016-07-27
Bugzilla
CVE-2016-5403 Qemu: virtio: unbounded memory allocation on host via guest leading to DoS2016-07-20
CVE-2016-5403 (MEDIUM CVSS 5.5) | The virtqueue_pop function in hw/vi | cvebase.io