CVE-2016-9916Missing Release of Memory after Effective Lifetime in Qemu

CWE-401Missing Release of Memory after Effective LifetimeCWE-244Heap Inspection10 documents7 sources
Severity
6.5MEDIUMNVD
OSV5.5
EPSS
0.1%
top 78.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
QemuDebian QemuDebian Linux
Timeline
PublishedDec 29
Latest updateMay 13

Description

Memory leak in hw/9pfs/9p-proxy.c in QEMU (aka Quick Emulator) allows local privileged guest OS users to cause a denial of service (host memory consumption and possibly QEMU process crash) by leveraging a missing cleanup operation in the proxy backend.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:HExploitability: 2.0 | Impact: 4.0

Affected Packages4 packages

NVDqemu/qemu< 2.8.0+1
debiandebian/qemu< qemu 1:2.8+dfsg-1 (bookworm)
Debianqemu/qemu< 1:2.8+dfsg-1+3
Ubuntuqemu/qemu< 2.0.0+dfsg-2ubuntu1.33+1

Also affects: Debian Linux 8.0

Patches

Patch: lists.gnu.orgPatch: lists.gnu.org

🔴Vulnerability Details

3
GHSA
GHSA-hphm-mg6m-84m8: Memory leak in hw/9pfs/9p-proxy2022-05-13
OSV
qemu vulnerabilities2017-04-20
OSV
CVE-2016-9916: Memory leak in hw/9pfs/9p-proxy2016-12-29

📋Vendor Advisories

3
Ubuntu
QEMU vulnerabilities2017-04-20
Red Hat
Qemu: 9pfs: memory leakage via proxy/handle callbacks2016-11-21
Debian
CVE-2016-9916: qemu - Memory leak in hw/9pfs/9p-proxy.c in QEMU (aka Quick Emulator) allows local priv...2016

💬Community

3
Bugzilla
CVE-2016-9913 CVE-2016-9914 CVE-2016-9915 CVE-2016-9916 Qemu: 9pfs: memory leakage via proxy/handle callbacks [fedora-all]2016-12-07
Bugzilla
CVE-2016-9913 CVE-2016-9914 CVE-2016-9915 CVE-2016-9916 xen: Qemu: 9pfs: memory leakage via proxy/handle callbacks [fedora-all]2016-12-07
Bugzilla
CVE-2016-9913 CVE-2016-9914 CVE-2016-9915 CVE-2016-9916 Qemu: 9pfs: memory leakage via proxy/handle callbacks2016-12-07