关于 CVE-2010-0429 的漏洞信息

1. 漏洞描述
From NVD
libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and qspice 0.3.0, does not properly restrict the addresses upon which memory-management actions are performed, which allows guest OS users to cause a denial of service (guest OS crash) or possibly gain privileges via unspecified vectors.
From 神龙GPT (AIGC)
libspice,在Red Hat Enterprise Virtualization (RHEV) 2.2和qspice 0.3.0中的Hypervisor(也称为 rhev-hypervisor)中,用于执行内存管理操作,但它没有适当地限制这些地址,这允许 guest OS 用户通过未指定的向量导致服务拒绝(guest OS 崩溃)或通过未知向量可能获得权限。
2. 漏洞评分(CVSS)
From NVD
NVD 暂无评分
From 神龙GPT (AIGC)
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
3. 漏洞类别
From NVD
NVD 暂无漏洞类别信息
From 神龙GPT (AIGC)
神龙GPT 暂无漏洞类别信息(请耐心等待)
Reference