CVE-2016-6351

NameCVE-2016-6351
DescriptionThe esp_do_dma function in hw/scsi/esp.c in QEMU (aka Quick Emulator), ...
SourceCVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDLA-1599-1, DLA-573-1, DLA-574-1
Debian Bugs832621

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
qemu (PTS)bullseye1:5.2+dfsg-11+deb11u3fixed
bullseye (security)1:5.2+dfsg-11+deb11u5fixed
bookworm1:7.2+dfsg-7+deb12u18fixed
bookworm (security)1:7.2+dfsg-7+deb12u15fixed
trixie1:10.0.8+ds-0+deb13u1fixed
trixie (security)1:10.0.2+ds-2+deb13u1fixed
forky1:10.2.2+ds-1fixed
sid1:11.0.0+ds-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
qemusourcewheezy1.1.2+dfsg-6+deb7u14DLA-573-1
qemusourcejessie1:2.1+dfsg-12+deb8u8DLA-1599-1
qemusource(unstable)1:2.6+dfsg-3.1832621
qemu-kvmsourcewheezy1.1.2+dfsg-6+deb7u14DLA-574-1
qemu-kvmsource(unstable)(unfixed)

Notes

Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=926cde5f3e4d2504ed161ed0cb771ac7cad6fd11 (v2.7.0-rc0)
Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=cc96677469388bad3d66479379735cf75db069e3 (v2.7.0-rc0)
https://www.openwall.com/lists/oss-security/2016/07/25/14
According to maintainer the fix relies on the fix for CVE-2016-4439
Search for package or bug name: Reporting problems