1
Candidate: CVE-2010-0297
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0297
6
Buffer overflow in the usb_host_handle_control function in the USB
7
passthrough handling implementation in usb-linux.c in QEMU before 0.11.1
8
allows guest OS users to cause a denial of service (guest OS crash or hang)
9
or possibly execute arbitrary code on the host OS via a crafted USB packet.
18
upstream: http://git.savannah.gnu.org/cgit/qemu.git/commit/?id=babd03fde68093482528010a5435c14ce9128e3f
19
upstream_qemu-kvm: released (0.11.1)
22
intrepid_qemu-kvm: DNE
24
karmic_qemu-kvm: ignored (reached end-of-life)
25
lucid_qemu-kvm: not-affected
26
maverick_qemu-kvm: not-affected
27
natty_qemu-kvm: not-affected
28
devel_qemu-kvm: not-affected
31
upstream_kvm: released (0.11.1)
33
hardy_kvm: ignored (reached end-of-life)
34
intrepid_kvm: needs-triage (reached end-of-life)
35
jaunty_kvm: ignored (reached end-of-life)