CVE-2015-5165

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions QEMU versions prior to the version used in Xen 4.6 Xen versions 4.5.x and earlier

Description The issue is related to the C+ mode offload emulation in the RTL8139 network card device model in QEMU. It allows remote attackers to read process heap memory via unspecified vectors. This could potentially enable an attacker to read data from memory. Additionally, it has been noted that a user on a guest virtual machine could read uninitialized QEMU memory on the switch and potentially run arbitrary code.

Recommendations For QEMU versions prior to the version used in Xen 4.6: Update to a version used in Xen 4.6 or later to resolve the issue. For Xen versions 4.5.x and earlier: Upgrade to Xen 4.6 or later to address the vulnerability. As a temporary workaround, consider restricting access to the RTL8139 network card device model in QEMU until a patch is available.

Fix

Information Disclosure

Use of Uninitialized Resource

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200CWE-908

Related Identifiers

BDU:2015-11314

CESA-2015_1793

CESA-2015_1833

CVE-2015-5165

DLA-479-1

DSA-3348-1

DSA-3349-1

MGASA-2015-0368

MGASA-2015-0369

MGASA-2016-0098

OPENSUSE-SU-2015_1964-1

OPENSUSE-SU-2015_2003-1

RHSA-2015:1674

RHSA-2015:1683

RHSA-2015:1718

RHSA-2015:1739

RHSA-2015:1740

RHSA-2015:1793

RHSA-2015:1833

RHSA-2015_1793

RHSA-2015_1833

SUSE-SU-2015:1384-1

SUSE-SU-2015:1404-1

SUSE-SU-2015:1408-1

SUSE-SU-2015:1421-1

SUSE-SU-2015:1479-1

SUSE-SU-2015:1479-2

SUSE-SU-2015_1384-1

SUSE-SU-2015_1404-1

USN-2724-1

Affected Products

Centos

Qemu

Red Hat

Suse

Ubuntu

Xen

CVE-2015-5165

Weakness Enumeration

Related Identifiers

Affected Products

References · 195