CVE-2016-6835

MEDIUM

Qemu < 2.6.0 - Denial of Service

Title source: rule

Description

The vmxnet_tx_pkt_parse_headers function in hw/net/vmxnet_tx_pkt.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (buffer over-read) by leveraging failure to check IP header length.

References (6)

Scores

CVSS v3 6.0
EPSS 0.0007
EPSS Percentile 21.7%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

Classification

Status published

Affected Products (4)

qemu/qemu < 2.6.0
redhat/virtualization
debian/debian_linux
n/a/n/a

Timeline

Published Dec 10, 2016
Tracked Since Feb 18, 2026