High severity8.8NVD Advisory· Published Apr 12, 2016· Updated May 6, 2026
CVE-2016-1568
CVE-2016-1568
Description
Use-after-free vulnerability in hw/ide/ahci.c in QEMU, when built with IDE AHCI Emulation support, allows guest OS users to cause a denial of service (instance crash) or possibly execute arbitrary code via an invalid AHCI Native Command Queuing (NCQ) AIO command.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
12- rhn.redhat.com/errata/RHSA-2016-0084.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2016-0086.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2016-0087.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2016-0088.htmlnvdThird Party Advisory
- www.debian.org/security/2016/dsa-3469nvdThird Party Advisory
- www.debian.org/security/2016/dsa-3470nvdThird Party Advisory
- www.debian.org/security/2016/dsa-3471nvdThird Party Advisory
- www.openwall.com/lists/oss-security/2016/01/09/1nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2016/01/09/2nvdMailing ListThird Party Advisory
- www.securityfocus.com/bid/80191nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1034859nvdThird Party AdvisoryVDB Entry
- security.gentoo.org/glsa/201602-01nvdThird Party Advisory
News mentions
0No linked articles in our index yet.