DEBIAN-CVE-2012-0029

Advisory lineage Upstream: 1 Downstream: 2

Upstream

CVE-2012-0029

Downstream

DSA-2396-1 DSA-2404-1

Published: 27 Jan 2012, 15:55

Last modified:28 Apr 2026, 20:07

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

27 Jan 2012, 15:55

Published

Vulnerability first disclosed

28 Apr 2026, 20:07

Last Modified

Vulnerability information updated

Description

Heap-based buffer overflow in the process_tx_desc function in the e1000 emulation (hw/e1000.c) in qemu-kvm 0.12, and possibly other versions, allows guest OS users to cause a denial of service (QEMU crash) and possibly execute arbitrary code via crafted legacy mode packets.

Affected Systems

debian•xen
< 4.1.3~rc1+hg-20120614.a9c0a89c08f2-1 | < 4.1.3~rc1+hg-20120614.a9c0a89c08f2-1 | < 4.1.3~rc1+hg-20120614.a9c0a89c08f2-1 | < 4.1.3~rc1+hg-20120614.a9c0a89c08f2-1

References (1)

https://security-tracker.debian.org/tracker/CVE-2012-0029