Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and qspice 0.3.0, does not properly restrict the addresses upon which memory-management actions are performed, which allows guest OS users to cause a denial of service (guest OS crash) or possibly gain privileges via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat QEMU KVM 'libspice'权限许可和访问控制漏洞
Vulnerability Description
QEMU是一款面向完整PC系统的开源仿真器。 在QEMU-KVM中使用的libspice不能在Guest系统控制的内存地址上执行某些内存管理操作,Guest用户可以借助未明向量导致拒绝服务(Guest系统崩溃)或有可能获取特权。
CVSS Information
N/A
Vulnerability Type
N/A