CVE-2016-9907Missing Release of Resource after Effective Lifetime in Qemu

CWE-772Missing Release of Resource after Effective LifetimeCWE-244Heap Inspection11 documents8 sources
Severity
6.5MEDIUMNVD
EPSS
0.2%
top 63.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
QemuDebian LinuxRedhat Openstack+1 more
Timeline
PublishedDec 23
Latest updateMay 13

Description

Quick Emulator (Qemu) built with the USB redirector usb-guest support is vulnerable to a memory leakage flaw. It could occur while destroying the USB redirector in 'usbredir_handle_destroy'. A guest user/process could use this issue to leak host memory, resulting in DoS for a host.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:HExploitability: 2.0 | Impact: 4.0

Affected Packages4 packages

Debianqemu/qemu< 1:2.8+dfsg-1+3
NVDqemu/qemu2.7.1
NVDredhat/openstack6 versions+5

Also affects: Debian Linux 8.0

Patches

Patch: www.openwall.comPatch: www.openwall.com

🔴Vulnerability Details

3
GHSA
GHSA-j9gg-mhrv-x578: Quick Emulator (Qemu) built with the USB redirector usb-guest support is vulnerable to a memory leakage flaw2022-05-13
CVEList
CVE-2016-9907: Quick Emulator (Qemu) built with the USB redirector usb-guest support is vulnerable to a memory leakage flaw2016-12-23
OSV
CVE-2016-9907: Quick Emulator (Qemu) built with the USB redirector usb-guest support is vulnerable to a memory leakage flaw2016-12-23

📋Vendor Advisories

3
Ubuntu
QEMU vulnerabilities2017-04-20
Red Hat
Qemu: usb: redirector: memory leakage when destroying redirector2016-11-07
Debian
CVE-2016-9907: qemu - Quick Emulator (Qemu) built with the USB redirector usb-guest support is vulnera...2016

💬Community

3
Bugzilla
CVE-2016-9907 Qemu: usb: redirector: memory leakage when destroying redirector [fedora-all]2016-12-07
Bugzilla
CVE-2016-9907 Qemu: usb: redirector: memory leakage when destroying redirector2016-12-07
Bugzilla
CVE-2014-9907 ImageMagick: DOS due to corrupted DDS files2016-09-23
CVE-2016-9907 — Qemu vulnerability | cvebase