CVE-2017-9310Infinite Loop in Qemu

CWE-835Infinite Loop12 documents7 sources
Severity
5.6MEDIUMNVD
OSV7.8
EPSS
0.1%
top 74.14%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
QemuDebian QemuDebian Linux
Timeline
PublishedJun 8
Latest updateMay 13

Description

QEMU (aka Quick Emulator), when built with the e1000e NIC emulation support, allows local guest OS privileged users to cause a denial of service (infinite loop) via vectors related to setting the initial receive / transmit descriptor head (TDH/RDH) outside the allocated descriptor buffer.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:HExploitability: 1.1 | Impact: 4.0

Affected Packages4 packages

debiandebian/qemu< qemu 1:2.8+dfsg-7 (bookworm)
Debianqemu/qemu< 1:2.8+dfsg-7+3
Ubuntuqemu/qemu< 2.0.0+dfsg-2ubuntu1.36+3
NVDqemu/qemu2.8.1.1

Also affects: Debian Linux 8.0, 9.0

Patches

Patch: www.openwall.comPatch: bugzilla.redhat.comPatch: www.openwall.com

🔴Vulnerability Details

4
GHSA
GHSA-q74v-9phf-c8wh: QEMU (aka Quick Emulator), when built with the e1000e NIC emulation support, allows local guest OS privileged users to cause a denial of service (infi2022-05-13
OSV
qemu regression2017-09-20
OSV
qemu vulnerabilities2017-09-13
OSV
CVE-2017-9310: QEMU (aka Quick Emulator), when built with the e1000e NIC emulation support, allows local guest OS privileged users to cause a denial of service (infi2017-06-08

📋Vendor Advisories

4
Ubuntu
QEMU regression2017-09-20
Ubuntu
QEMU vulnerabilities2017-09-13
Red Hat
Qemu: net: infinite loop in e1000e NIC emulation2017-02-10
Debian
CVE-2017-9310: qemu - QEMU (aka Quick Emulator), when built with the e1000e NIC emulation support, all...2017

💬Community

3
Bugzilla
CVE-2020-25707 QEMU: infinite loop in e1000e_write_packet_to_guest() in hw/net/e1000e_core.c2020-11-02
Bugzilla
CVE-2017-9310 Qemu: net: infinite loop in e1000e NIC emulation [fedora-all]2017-05-19
Bugzilla
CVE-2017-9310 Qemu: net: infinite loop in e1000e NIC emulation2017-05-19