QEMU functions queue_pop Function Denial of Service Vulnerability (CVE-2016-5403)
QEMU functions queue_pop Function Denial of Service Vulnerability (CVE-2016-5403)
Release date: 2016-08-02
Updated on:
Affected Systems:
QEMU
Description:
CVE (CAN) ID: CVE-2016-5403
QEMU is an open source simulator software.
QEMU has a security vulnerability in the javasqueue_pop function of hw/virtio. c. After submitting the request, the OS administrator of the local client can cause a denial of service (DoS) (memory depletion and QEMU process crash ).
<* Source: Zhenhao Hong
*>
Suggestion:
Vendor patch:
QEMU
----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://xenbits.xen.org/xsa/advisory-184.html
Use KVM + Qemu to build a virtual machine in Ubuntu
Linux getting started Tutorial: QEMU for Virtual Machine experience
Ubuntu 12.04 cannot find the Qemu command
Install QEMU + efi bios on Arch Linux
QEMU translation framework and debugging tools
QEMU code analysis: BIOS loading process
QEMU details: click here
QEMU: click here
This article permanently updates the link address: