609490 – (CVE-2017-6000) app-emulation/qemu: crypto: memory leakage in qcrypto_ivgen_essiv_init

Bug 609490 (CVE-2017-6000) - app-emulation/qemu: crypto: memory leakage in qcrypto_ivgen_essiv_init

Summary: app-emulation/qemu: crypto: memory leakage in qcrypto_ivgen_essiv_init

Status:	RESOLVED INVALID

Alias:	CVE-2017-6000

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal minor (vote)
Assignee:	Gentoo Security

URL:	https://bugzilla.redhat.com/show_bug....
Whiteboard:	B4 [upstream]
Keywords:

Depends on:
Blocks:

Reported:	2017-02-16 08:47 UTC by Agostino Sarubbo
Modified:	2017-02-17 07:10 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Agostino Sarubbo gentoo-dev

2017-02-16 08:47:21 UTC

From ${URL} :

Quick Emulator(Qemu) built with the Crypto block IV generator - essiv support
is vulnerable to a host memory leakage issue. It could occur while initialising
the crypto device in 'qcrypto_ivgen_essiv_init'.

A guest user/process could use this flaw to leak host memory resulting in DoS.

Upstream patch:
---------------
  -> https://lists.gnu.org/archive/html/qemu-devel/2017-01/msg00295.html

Reference:
----------
  -> http://www.openwall.com/lists/oss-security/2017/02/16/2


@maintainer(s): after the bump, in case we need to stabilize the package, please let us know if it is ready for the stabilization or not.

Comment 1 Thomas Deutschmann (RETIRED) gentoo-dev

2017-02-17 07:10:12 UTC

This one turned out to be a non security issue, as guest could not trigger this memory leak.

CVE has been cancelled, see https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6000