CVE-2015-5279

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions QEMU versions prior to 2.4.0.1

Description The issue is caused by a heap-based buffer overflow in the ne2000 receive function. This can allow a local attacker to cause a denial of service or possibly execute arbitrary code via vectors related to receiving packets. A privileged user inside a guest could use this flaw to crash the QEMU instance or potentially execute arbitrary code.

Recommendations For versions prior to 2.4.0.1, update to version 2.4.0.1 or later to resolve the issue. As a temporary workaround, consider disabling the ne2000 receive function until a patch is available. Restrict access to the vulnerable hw/net/ne2000.c module to minimize the risk of exploitation. Avoid using the NE2000 NIC emulation support in QEMU until the issue is resolved.

Exploit

Fix

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

ALT-PU-2015-1865

BDU:2015-11547

CESA-2015_1924

CVE-2015-5279

DSA-3361-1

DSA-3362-1

MGASA-2015-0397

RHSA-2015:1896

RHSA-2015:1923

RHSA-2015:1924

RHSA-2015:1925

RHSA-2015:2065

RHSA-2015_1924

RHSA-2015_1925

RHSA-2015_2065

SUSE-SU-2015:1782-1

SUSE-SU-2016:1698-1

SUSE-SU-2016:1785-1

USN-2745-1

Affected Products

Alt Linux

Centos

Qemu

Red Hat

Suse

Ubuntu

CVE-2015-5279

Weakness Enumeration

Related Identifiers

Affected Products

References · 175