CVE 2012-6075
Buffer overflow in the e1000_receive function in the e1000 device driver (hw/e1000.c) in QEMU 1.3.0-rc2 and other versions, when the SBP and LPE flags are disabled, allows remote attackers to cause a denial of service (guest OS crash) and possibly execute arbitrary guest code via a large packet.
Related bugs and status
CVE-2012-6075 (Candidate) is related to these bugs:
Bug #1117636: no man page for 'kvm'
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1117636 | no man page for 'kvm' | qemu (Ubuntu) | Low | Fix Released |
Bug #1118406: qemu lacks support for Ceph RBD in raring
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1118406 | qemu lacks support for Ceph RBD in raring | qemu (Ubuntu) | High | Fix Released | ||
1118406 | qemu lacks support for Ceph RBD in raring | qemu (Ubuntu Raring) | High | Fix Released |
Bug #1176209: Import problem caused by duplicate message ID
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1176209 | Import problem caused by duplicate message ID | xen (Ubuntu) | Low | Invalid | ||
1176209 | Import problem caused by duplicate message ID | xen (Ubuntu Precise) | Low | Fix Released | ||
1176209 | Import problem caused by duplicate message ID | xen (Ubuntu Quantal) | Low | Fix Released |
Bug #1180396: Xen stable update to 4.1.5
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1180396 | Xen stable update to 4.1.5 | xen (Ubuntu) | Low | Invalid | ||
1180396 | Xen stable update to 4.1.5 | xen (Ubuntu Precise) | Medium | Fix Released | ||
1180396 | Xen stable update to 4.1.5 | xen (Ubuntu Quantal) | Medium | Fix Released |
Bug #1180397: [MRE] Xen stable update to 4.2.2
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1180397 | [MRE] Xen stable update to 4.2.2 | xen (Ubuntu) | Low | Fix Released | ||
1180397 | [MRE] Xen stable update to 4.2.2 | xen (Ubuntu Raring) | Low | Fix Released |
See the
CVE page on Mitre.org
for more details.