1
PublicDateAtUSN: 2016-12-23
2
Candidate: CVE-2016-9911
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9911
6
http://www.openwall.com/lists/oss-security/2016/12/06/10
7
https://usn.ubuntu.com/usn/usn-3261-1
9
Quick Emulator (Qemu) built with the USB EHCI Emulation support is
10
vulnerable to a memory leakage issue. It could occur while processing
11
packet data in 'ehci_init_transfer'. A guest user/process could use this
12
issue to leak host memory, resulting in DoS for a host.
16
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=847951
18
Discovered-by: Li Qiang
22
upstream_qemu-kvm: needed
23
precise_qemu-kvm: ignored (reached end-of-life)
24
precise/esm_qemu-kvm: needed
26
vivid/ubuntu-core_qemu-kvm: DNE
27
vivid/stable-phone-overlay_qemu-kvm: DNE
36
upstream: http://git.qemu-project.org/?p=qemu.git;a=commit;h=791f97758e223de3290592d169f8e6339c281714
40
trusty_qemu: released (2.0.0+dfsg-2ubuntu1.33)
41
vivid/ubuntu-core_qemu: DNE
42
vivid/stable-phone-overlay_qemu: DNE
43
xenial_qemu: released (1:2.5+dfsg-5ubuntu10.11)
44
yakkety_qemu: released (1:2.6.1+dfsg-0ubuntu5.4)
45
zesty_qemu: not-affected (1:2.8+dfsg-3ubuntu2)
46
artful_qemu: not-affected (1:2.8+dfsg-3ubuntu2)
47
bionic_qemu: not-affected (1:2.8+dfsg-3ubuntu2)
48
devel_qemu: not-affected (1:2.8+dfsg-3ubuntu2)