PT-2015-2201 · Qemu+5 · Qemu+5

Qinghao Tang

Publicado

2015-09-15

Atualizado

2023-02-13

CVE-2015-5279

CVSS v2.0

7.2

Alta

Vetor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions QEMU versions prior to 2.4.0.1

Description The issue is caused by a heap-based buffer overflow in the ne2000 receive function. This can allow a local attacker to cause a denial of service or possibly execute arbitrary code via vectors related to receiving packets. A privileged user inside a guest could use this flaw to crash the QEMU instance or potentially execute arbitrary code.

Recommendations For versions prior to 2.4.0.1, update to version 2.4.0.1 or later to resolve the issue. As a temporary workaround, consider disabling the ne2000 receive function until a patch is available. Restrict access to the vulnerable hw/net/ne2000.c module to minimize the risk of exploitation. Avoid using the NE2000 NIC emulation support in QEMU until the issue is resolved.

Exploit

Correção

DoS

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

ALT-PU-2015-1865

BDU:2015-11547

CESA-2015_1924

CVE-2015-5279

DSA-3361-1

DSA-3362-1

MGASA-2015-0397

RHSA-2015:1896

RHSA-2015:1923

RHSA-2015:1924

RHSA-2015:1925

RHSA-2015:2065

RHSA-2015_1924

RHSA-2015_1925

RHSA-2015_2065

SUSE-SU-2015:1782-1

SUSE-SU-2016:1698-1

SUSE-SU-2016:1785-1

USN-2745-1

Produtos afetados

Alt Linux

Centos

Qemu

Red Hat

Suse

Ubuntu

PT-2015-2201 · Qemu+5 · Qemu+5

CVE-2015-5279

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 175