CVE-2016-1922
Severity CVSS v4.0:
Pending analysis
Type:
CWE-476
NULL Pointer Dereference
Publication date:
29/12/2016
Last modified:
12/04/2025
Description
QEMU (aka Quick Emulator) built with the TPR optimization for 32-bit Windows guests support is vulnerable to a null pointer dereference flaw. It occurs while doing I/O port write operations via hmp interface. In that, 'current_cpu' remains null, which leads to the null pointer dereference. A user or process could use this flaw to crash the QEMU instance, resulting in DoS issue.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Base Score 2.0
2.10
Severity 2.0
LOW
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:* | 2.5.1.1 (including) | |
| cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://www.debian.org/security/2016/dsa-3469
- http://www.debian.org/security/2016/dsa-3470
- http://www.debian.org/security/2016/dsa-3471
- http://www.openwall.com/lists/oss-security/2016/01/16/1
- http://www.openwall.com/lists/oss-security/2016/01/16/6
- http://www.securityfocus.com/bid/81058
- https://bugzilla.redhat.com/show_bug.cgi?id=1283934
- https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg02812.html
- https://security.gentoo.org/glsa/201604-01
- http://www.debian.org/security/2016/dsa-3469
- http://www.debian.org/security/2016/dsa-3470
- http://www.debian.org/security/2016/dsa-3471
- http://www.openwall.com/lists/oss-security/2016/01/16/1
- http://www.openwall.com/lists/oss-security/2016/01/16/6
- http://www.securityfocus.com/bid/81058
- https://bugzilla.redhat.com/show_bug.cgi?id=1283934
- https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg02812.html
- https://security.gentoo.org/glsa/201604-01