Explore top 10 tips to secure your open-source projects now. Read More
×
CVE-2016-2391
Zuozhi Fzz discovered that eof_times in USB OHCI emulation support
could be used to cause a denial of service, via a null pointer
dereference.
CVE-2016-2392 / CVE-2016-2538
Qinghao Tang found a NULL pointer dereference and multiple integer
overflows in the USB Net device support that could allow local guest
OS administrators to cause a denial of service. These issues related
to remote NDIS control message handling.
CVE-2016-2841
Yang Hongke reported an infinite loop vulnerability in the NE2000 NIC
emulation support.
CVE-2016-2857
Liu Ling found a flaw in QEMU IP checksum routines. Attackers could
take advantage of this issue to cause QEMU to crash.
CVE-2016-2858
Arbitrary stack based allocation in the Pseudo Random Number Generator
(PRNG) back-end support.
CVE-2016-4001 / CVE-2016-4002
Oleksandr Bazhaniuk reported buffer overflows in the Stellaris and the
MIPSnet ethernet controllers emulation. Remote malicious users could
Get the latest Linux and open source security news straight to your inbox.