Lucene search

K

RedhatCVELIST:CVE-2015-5225

HistoryNov 06, 2015 - 9:00 p.m.

CVE-2015-5225

2015-11-0621:00:00

redhat

www.cve.org

1

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.6%

Buffer overflow in the vnc_refresh_server_surface function in the VNC display driver in QEMU before 2.4.0.1 allows guest users to cause a denial of service (heap memory corruption and process crash) or possibly execute arbitrary code on the host via unspecified vectors, related to refreshing the server display surface.

References

lists.fedoraproject.org/pipermail/package-announce/2015-October/169039.html

lists.fedoraproject.org/pipermail/package-announce/2015-September/165484.html

lists.fedoraproject.org/pipermail/package-announce/2015-September/166798.html

rhn.redhat.com/errata/RHSA-2015-1772.html

rhn.redhat.com/errata/RHSA-2015-1837.html

www.debian.org/security/2015/dsa-3348

www.openwall.com/lists/oss-security/2015/08/21/6

www.securityfocus.com/bid/76506

www.securitytracker.com/id/1033547

lists.gnu.org/archive/html/qemu-devel/2015-08/msg02495.html

lists.gnu.org/archive/html/qemu-devel/2015-09/msg05832.html

security.gentoo.org/glsa/201602-01

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.6%

Related for CVELIST:CVE-2015-5225

nessus8 prion1 openvas7 fedora3 cve1 debiancve1 redhat2 freebsd1 nvd1 veracode1 ubuntucve1 mageia1 debian2 osv1 ubuntu1 securityvulns2 ibm1 oraclelinux1 gentoo1