PT-2015-1968 · Xen+5 · Xen+5

Donghai Zhu

·

Publicado

2015-08-11

·

Atualizado

2023-02-13

·

CVE-2015-5165

CVSS v2.0

9.3

Alta

VetorAV:N/AC:M/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions QEMU versions prior to the version used in Xen 4.6 Xen versions 4.5.x and earlier
Description The issue is related to the C+ mode offload emulation in the RTL8139 network card device model in QEMU. It allows remote attackers to read process heap memory via unspecified vectors. This could potentially enable an attacker to read data from memory. Additionally, it has been noted that a user on a guest virtual machine could read uninitialized QEMU memory on the switch and potentially run arbitrary code.
Recommendations For QEMU versions prior to the version used in Xen 4.6: Update to a version used in Xen 4.6 or later to resolve the issue. For Xen versions 4.5.x and earlier: Upgrade to Xen 4.6 or later to address the vulnerability. As a temporary workaround, consider restricting access to the RTL8139 network card device model in QEMU until a patch is available.

Correção

Information Disclosure

Use of Uninitialized Resource

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200CWE-908

Identificadores relacionados

BDU:2015-11314
CESA-2015_1793
CESA-2015_1833
CVE-2015-5165
DLA-479-1
DSA-3348-1
DSA-3349-1
MGASA-2015-0368
MGASA-2015-0369
MGASA-2016-0098
OPENSUSE-SU-2015_1964-1
OPENSUSE-SU-2015_2003-1
RHSA-2015:1674
RHSA-2015:1683
RHSA-2015:1718
RHSA-2015:1739
RHSA-2015:1740
RHSA-2015:1793
RHSA-2015:1833
RHSA-2015_1793
RHSA-2015_1833
SUSE-SU-2015:1384-1
SUSE-SU-2015:1404-1
SUSE-SU-2015:1408-1
SUSE-SU-2015:1421-1
SUSE-SU-2015:1479-1
SUSE-SU-2015:1479-2
SUSE-SU-2015_1384-1
SUSE-SU-2015_1404-1
USN-2724-1

Produtos afetados

Centos
Qemu
Red Hat
Suse
Ubuntu
Xen