← back
CVE-2017-16845

CVE-2017-16845

EPSS 3.0%
hw/input/ps2.c in Qemu does not validate 'rptr' and 'count' values during guest migration, leading to out-of-bounds access.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://lists.debian.org/debian-lts-announce/2018/09/msg00007.htmlhttps://lists.gnu.org/archive/html/qemu-devel/2017-11/msg02982.htmlhttps://usn.ubuntu.com/3575-1/https://usn.ubuntu.com/3649-1/https://www.debian.org/security/2018/dsa-4213http://www.securityfocus.com/bid/101923