cbcvebase.
CVE-2018-17962
published 2018-10-09

CVE-2018-17962: Qemu has a Buffer Overflow in pcnet_receive in hw/net/pcnet.c because an incorrect integer data type is used.

high7.5CVSS 3.0
AVNACLPRNUINSUCNINAH
Qemu has a Buffer Overflow in pcnet_receive in hw/net/pcnet.c because an incorrect integer data type is used.

Affected

22 ranges
VendorProductVersion rangeFixed in
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
debiandebian_linux
debiandebian_linux
debianqemu< qemu 1:3.1+dfsg-1 (bookworm)qemu 1:3.1+dfsg-1 (bookworm)
oraclelinux
qemuqemu
qemuqemu
qemuqemu
qemuqemu>= 0 < 1:3.1+dfsg-11:3.1+dfsg-1
qemuqemu>= 0 < 1:3.1+dfsg-11:3.1+dfsg-1
qemuqemu>= 0 < 1:3.1+dfsg-11:3.1+dfsg-1
qemuqemu>= 0 < 1:3.1+dfsg-11:3.1+dfsg-1
qemuqemu>= 0 < 2.0.0+dfsg-2ubuntu1.442.0.0+dfsg-2ubuntu1.44
qemuqemu>= 0 < 1:2.5+dfsg-5ubuntu10.331:2.5+dfsg-5ubuntu10.33
qemuqemu>= 0 < 1:2.11+dfsg-1ubuntu7.81:2.11+dfsg-1ubuntu7.8
redhatlinux
suselinux_enterprise_server
suselinux_enterprise_server
suselinux_enterprise_server

CVSS provenance

nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.5HIGH