Lucene search

K

RedhatCVELIST:CVE-2015-8745

HistoryDec 29, 2016 - 10:00 p.m.

CVE-2015-8745

2016-12-2922:00:00

redhat

www.cve.org

1

6.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.7%

QEMU (aka Quick Emulator) built with a VMWARE VMXNET3 paravirtual NIC emulator support is vulnerable to crash issue. It could occur while reading Interrupt Mask Registers (IMR). A privileged (CAP_SYS_RAWIO) guest user could use this flaw to crash the QEMU process instance resulting in DoS.

References

git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=c6048f849c7e3f009786df76206e895

www.debian.org/security/2016/dsa-3471

www.openwall.com/lists/oss-security/2016/01/04/4

www.openwall.com/lists/oss-security/2016/01/04/7

www.securityfocus.com/bid/79822

www.securitytracker.com/id/1034575

bugzilla.redhat.com/show_bug.cgi?id=1270876

security.gentoo.org/glsa/201602-01

6.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.7%

Related for CVELIST:CVE-2015-8745

prion1 debiancve1 nvd1 ubuntucve1 cve1 openvas20 fedora5 nessus18 mageia1 debian2 ubuntu1 osv1 gentoo1 suse10 ibm1