SB2013011809 - Buffer overflow in qemu (Alpine package)
Published: January 18, 2013
Security Bulletin ID
SB2013011809
Severity
High
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Remote access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Buffer overflow (CVE-ID: CVE-2012-6075)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
Buffer overflow in the e1000_receive function in the e1000 device driver (hw/e1000.c) in QEMU 1.3.0-rc2 and other versions, when the SBP and LPE flags are disabled, allows remote attackers to cause a denial of service (guest OS crash) and possibly execute arbitrary guest code via a large packet.
Remediation
Install update from vendor's website.
References
- https://git.alpinelinux.org/aports/commit/?id=d7fcf5542a0a6ab8f821862a9cc050db36c8c2e9
- https://git.alpinelinux.org/aports/commit/?id=82870cab68b87ed0480c13bc420d119b7bf0d4e8
- https://git.alpinelinux.org/aports/commit/?id=d38b979123af29618f3f0fe7d5048c973e309188
- https://git.alpinelinux.org/aports/commit/?id=72b0ec467593775da3253251cecdb84f4bb10b13