Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and qspice 0.3.0, does not properly validate guest QXL driver pointers, which allows guest OS users to cause a denial of service (invalid pointer dereference and guest OS crash) or possibly gain privileges via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat QEMU KVM 'libspice'输入验证漏洞
Vulnerability Description
QEMU是一款面向完整PC系统的开源仿真器。 在QEMU-KVM中使用的libspice不能正确验证Guest系统的QXL驱动程序指针,Guest用户可以借助未明向量导致拒绝服务(无效指针引用和Guest系统崩溃)或者有可能获取特权。
CVSS Information
N/A
Vulnerability Type
N/A