DEBIAN-CVE-2012-6075

Advisory lineage Upstream: 1 Downstream: 3

Upstream

CVE-2012-6075

Downstream

DSA-2607-1 DSA-2608-1 DSA-2619-1

Published: 13 Feb 2013, 01:55

Last modified:28 Apr 2026, 20:04

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

13 Feb 2013, 01:55

Published

Vulnerability first disclosed

28 Apr 2026, 20:04

Last Modified

Vulnerability information updated

Description

Buffer overflow in the e1000_receive function in the e1000 device driver (hw/e1000.c) in QEMU 1.3.0-rc2 and other versions, when the SBP and LPE flags are disabled, allows remote attackers to cause a denial of service (guest OS crash) and possibly execute arbitrary guest code via a large packet.

Affected Systems

debian•qemu
< 1.1.2+dfsg-4 | < 1.1.2+dfsg-4 | < 1.1.2+dfsg-4 | < 1.1.2+dfsg-4
debian•xen
< 4.1.3-8 | < 4.1.3-8 | < 4.1.3-8 | < 4.1.3-8

References (1)

https://security-tracker.debian.org/tracker/CVE-2012-6075