High severity8.6NVD Advisory· Published May 23, 2016· Updated May 6, 2026
CVE-2016-4001
CVE-2016-4001
Description
Buffer overflow in the stellaris_enet_receive function in hw/net/stellaris_enet.c in QEMU, when the Stellaris ethernet controller is configured to accept large packets, allows remote attackers to cause a denial of service (QEMU crash) via a large packet.
Affected products
11cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*+ 3 more
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
- cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:23:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:24:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
10- lists.gnu.org/archive/html/qemu-devel/2016-04/msg01334.htmlnvdPatchThird Party Advisory
- lists.fedoraproject.org/pipermail/package-announce/2016-April/183275.htmlnvdThird Party Advisory
- lists.fedoraproject.org/pipermail/package-announce/2016-May/183350.htmlnvdThird Party Advisory
- lists.fedoraproject.org/pipermail/package-announce/2016-May/184209.htmlnvdThird Party Advisory
- www.openwall.com/lists/oss-security/2016/04/11/4nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2016/04/12/6nvdMailing ListThird Party Advisory
- www.securityfocus.com/bid/85976nvdThird Party AdvisoryVDB Entry
- www.ubuntu.com/usn/USN-2974-1nvdThird Party Advisory
- lists.debian.org/debian-lts-announce/2018/11/msg00038.htmlnvdMailing ListThird Party Advisory
- security.gentoo.org/glsa/201609-01nvdThird Party Advisory
News mentions
0No linked articles in our index yet.