CVE-2017-2630

Published: 7/27/2018 Last updated: 8/5/2024 Reserved: 12/1/2016

A stack buffer overflow flaw was found in the Quick Emulator (QEMU) before 2.9 built with the Network Block Device (NBD) client support. The flaw could occur while processing server's response to a 'NBD_OPT_LIST' request. A malicious NBD server could use this issue to crash a remote NBD client resulting in DoS or potentially execute arbitrary code on client host with privileges of the QEMU process.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
3.0	5.5	Medium	CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L

Opam packages affected (2)

conf-qemu-img nbd-tool

Products affected (1)

Product	Vendor	Version
Qemu:	QEMU	10.0.3.25

References (16)

https://access.redhat.com/errata/RHSA-2017:2392
http://www.securityfocus.com/bid/96265
https://security.gentoo.org/glsa/201704-01
http://www.openwall.com/lists/oss-security/2017/02/15/2
https://lists.gnu.org/archive/html/qemu-devel/2017-02/msg01246.html
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2630
https://bugzilla.redhat.com/show_bug.cgi?id=1422415
https://github.com/qemu/qemu/commit/2563c9c6b8670400c48e562034b321a7cf3d9a85
https://access.redhat.com/errata/RHSA-2017:2392
http://www.securityfocus.com/bid/96265
https://security.gentoo.org/glsa/201704-01
http://www.openwall.com/lists/oss-security/2017/02/15/2
https://lists.gnu.org/archive/html/qemu-devel/2017-02/msg01246.html
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2630
https://bugzilla.redhat.com/show_bug.cgi?id=1422415
https://github.com/qemu/qemu/commit/2563c9c6b8670400c48e562034b321a7cf3d9a85