Vulnerabilities

CVE-2016-2858

by Fred · 07/04/2016

QEMU, when built with the Pseudo Random Number Generator (PRNG) back-end support, allows local guest OS users to cause a denial of service (process crash) via an entropy request, which triggers arbitrary stack based allocation and memory corruption.

Date published : 2016-04-07

http://www.securityfocus.com/bid/84134

http://git.qemu.org/?p=qemu.git;a=commit;h=60253ed1e6ec6d8e5ef2efe7bf755f475dce9956

Similar

Tags: Cybersecurity Alert