CVE-2018-17963

high-risk

Published 2018-10-09

qemu_deliver_packet_iov in net/net.c in Qemu accepts packet sizes greater than INT_MAX, which allows attackers to cause a denial of service or possibly have unspecified other impact.

Do I need to act?

1.5% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.8/10 Critical

NETWORK / LOW complexity

Affected Products (16)

Qemu

Debian Linux

Ubuntu Linux

Openstack

Virtualization

Virtualization Manager

Affected Vendors

Debian Redhat Canonical Qemu

References (18)

Mailing List http://www.openwall.com/lists/oss-security/2018/10/08/1

Third Party Advisory https://access.redhat.com/errata/RHSA-2019:2166

Third Party Advisory https://access.redhat.com/errata/RHSA-2019:2425

Third Party Advisory https://access.redhat.com/errata/RHSA-2019:2553

Mailing List https://lists.debian.org/debian-lts-announce/2018/11/msg00038.html

Mailing List https://lists.gnu.org/archive/html/qemu-devel/2018-09/msg03267.html

Mailing List https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg06054.html

Third Party Advisory https://usn.ubuntu.com/3826-1/

Third Party Advisory https://www.debian.org/security/2018/dsa-4338