Vulnerability Details : CVE-2017-16845
hw/input/ps2.c in Qemu does not validate 'rptr' and 'count' values during guest migration, leading to out-of-bounds access.
Vulnerability category: Input validation
Products affected by CVE-2017-16845
- cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
- cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2017-16845
0.45%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 72 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-16845
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.4
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:P |
10.0
|
4.9
|
NIST | |
10.0
|
CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:H |
3.9
|
5.8
|
NIST |
CWE ids for CVE-2017-16845
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2017-16845
-
https://usn.ubuntu.com/3575-1/
USN-3575-1: QEMU vulnerabilities | Ubuntu security noticesThird Party Advisory
-
https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg02982.html
Re: [Qemu-devel] [PATCH v2] ps2: check PS2Queue indices in post_load rouMailing List;Patch;Third Party Advisory
-
https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html
[SECURITY] [DLA 1497-1] qemu security updateMailing List;Third Party Advisory
-
https://www.debian.org/security/2018/dsa-4213
Debian -- Security Information -- DSA-4213-1 qemuThird Party Advisory
-
http://www.securityfocus.com/bid/101923
QEMU 'hw/input/ps2.c' Information Disclosure VulnerabilityThird Party Advisory;VDB Entry
-
https://usn.ubuntu.com/3649-1/
USN-3649-1: QEMU vulnerabilities | Ubuntu security noticesThird Party Advisory
Jump to