What is CVE-2018-17958?

CVE-2018-17958 is a high-severity vulnerability in Qemu, classified under Integer Overflow or Wraparound. CVSS score: 7.5/10. Published 2018-10-09.

How severe is CVE-2018-17958?

High severity. CVSS v3 base score is 7.5 out of 10.

CVE-2018-17958

Qemu has a Buffer Overflow in rtl8139_do_receive in hw/net/rtl8139.c because an incorrect integer data type is used.

Vulnerability class: Integer Overflow

EPSS: 0.009 (75.9th percentile) — read the EPSS interpretation.

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

[oss-security] 20181008 Qemu: integer overflow issues (mailing-list, x_refsource_MLIST, Mailing List, Third Party Advisory)
[qemu-devel] 20180926 [PULL 22/25] rtl8139: fix possible out of bound access (mailing-list, x_refsource_MLIST, Patch, Mailing List, Third Party Advisory)
105556 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
[debian-lts-announce] 20190129 [SECURITY] [DLA 1646-1] qemu security update (mailing-list, x_refsource_MLIST, Mailing List, Third Party Advisory)
USN-3826-1 (x_refsource_UBUNTU, vendor-advisory, Third Party Advisory)
DSA-4454 (vendor-advisory, Third Party Advisory, x_refsource_DEBIAN)
20190531 [SECURITY] [DSA 4454-1] qemu security update (mailing-list, x_refsource_BUGTRAQ, Mailing List, Third Party Advisory)
RHSA-2019:2425 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
RHSA-2019:2553 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)

What is CVE-2018-17958?: CVE-2018-17958 is a high-severity vulnerability in Qemu, classified under Integer Overflow or Wraparound. CVSS score: 7.5/10. Published 2018-10-09.
How severe is CVE-2018-17958?: High severity. CVSS v3 base score is 7.5 out of 10.