Launchpad CVE tracker

CVE 2017-5973

The xhci_kick_epctx function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (infinite loop and QEMU process crash) via vectors related to control transfer descriptor sequence.

Related bugs and status

CVE-2017-5973 (Candidate) is related to these bugs:

Bug #1647389: Regression: Live migrations can still crash after CVE-2016-5403 fix

Summary				In	Importance	Status
	1647389	Regression: Live migrations can still crash after CVE-2016-5403 fix		qemu (Ubuntu)	High	Fix Released
	1647389	Regression: Live migrations can still crash after CVE-2016-5403 fix		qemu (Ubuntu Xenial)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2017021...
MLIST: [qemu-devel] 20170206 ...
CONFIRM: http://git.qemu-projec...
CONFIRM: https://bugzilla.redha...
BID: 96220
GENTOO: GLSA-201704-01
REDHAT: RHSA-2017:2392
REDHAT: RHSA-2017:2408
MLIST: [debian-lts-announce] ...

Launchpad.net

CVE 2017-5973

Related bugs and status

Related bugs

References