Lucene search
GoogleOSV:DSA-3349-1HistorySep 02, 2015 - 12:00 a.m.
qemu-kvm - security update
2015-09-0200:00:00
Google
osv.dev
18
EPSS
0.003
Percentile
71.4%
Several vulnerabilities were discovered in qemu-kvm, a full
virtualization solution on x86 hardware.
- CVE-2015-5165
Donghai Zhu discovered that the QEMU model of the RTL8139 network
card did not sufficiently validate inputs in the C+ mode offload
emulation, allowing a malicious guest to read uninitialized memory
from the QEMU process’s heap. - CVE-2015-5745
A buffer overflow vulnerability was discovered in the way QEMU
handles the virtio-serial device. A malicious guest could use this
flaw to mount a denial of service (QEMU process crash).
For the oldstable distribution (wheezy), these problems have been fixed
in version 1.1.2+dfsg-6+deb7u9.
We recommend that you upgrade your qemu-kvm packages.
References
Related
openvas
openvas
Debian Security Advisory DSA 3349-1 (qemu-kvm - security update)
2015-09-02 00:00:00
Debian: Security Advisory (DSA-3349-1)
2015-09-01 00:00:00
RedHat Update for qemu-kvm RHSA-2015:1833-01
2015-09-23 00:00:00
debian
debian
[SECURITY] [DSA 3349-1] qemu-kvm security update
2015-09-02 16:22:36
[SECURITY] [DSA 3349-1] qemu-kvm security update
2015-09-02 16:22:36
[SECURITY] [DSA 3348-1] qemu security update
2015-09-02 16:22:30
nessus
nessus
Debian DSA-3349-1 : qemu-kvm - security update
2015-09-03 00:00:00
CentOS 7 : qemu-kvm (CESA-2015:1793)
2015-10-22 00:00:00
Oracle Linux 6 : qemu-kvm (ELSA-2015-1833)
2015-09-23 00:00:00
centos
centos
qemu security update
2015-09-22 18:40:09
libcacard, qemu security update
2015-09-16 12:50:23
debiancve
debiancve
CVE-2015-5165
2015-08-12 14:59:24
CVE-2015-5745
2020-01-23 20:15:12
cvelist
cvelist
CVE-2015-5165
2015-08-12 14:00:00
CVE-2015-5745
2020-01-23 19:35:16
nvd
nvd
CVE-2015-5165
2015-08-12 14:59:24
CVE-2015-5745
2020-01-23 20:15:12
oraclelinux
oraclelinux
qemu-kvm security fix update
2015-09-15 00:00:00
qemu-kvm security update
2015-09-22 00:00:00
qemu-kvm security update
2016-05-16 00:00:00
ubuntucve
ubuntucve
CVE-2015-5165
2015-08-12 00:00:00
CVE-2015-5745
2015-08-06 00:00:00
redhat
redhat
(RHSA-2015:1833) Moderate: qemu-kvm security update
2015-09-22 00:00:00
(RHSA-2015:1739) Moderate: qemu-kvm-rhev security update
2015-09-07 15:43:52
(RHSA-2015:1683) Moderate: qemu-kvm-rhev security update
2015-08-25 00:00:00
veracode
veracode
Information Disclosure
2019-01-15 09:07:21
freebsd
freebsd
fedora
fedora
[SECURITY] Fedora 21 Update: qemu-2.1.3-9.fc21
2015-09-01 07:30:01
[SECURITY] Fedora 21 Update: xen-4.4.3-3.fc21
2015-09-26 21:53:13
[SECURITY] Fedora 22 Update: xen-4.5.1-8.fc22
2015-09-27 03:27:49
ubuntu
ubuntu
QEMU vulnerabilities
2015-08-27 00:00:00
securityvulns
securityvulns
[USN-2724-1] QEMU vulnerabilities
2015-08-31 00:00:00
libvirt / qemu multiple security vulnerabilities
2015-08-31 00:00:00
prion
prion
Design/Logic Flaw
2015-08-12 14:59:00
Buffer overflow
2020-01-23 20:15:00
ibm
ibm
xen
xen
QEMU leak of uninitialized heap memory in rtl8139 device model
2015-08-03 12:00:00
cve
cve
CVE-2015-5165
2015-08-12 14:59:24
CVE-2015-5745
2020-01-23 20:15:12
osv
osv
qemu - security update
2015-09-02 00:00:00
xen - security update
2016-05-17 00:00:00
arista
arista
Security Advisory 0013
2015-09-04 00:00:00
myhack58
myhack58
suse
suse
Security update for xen (important)
2015-08-21 16:11:31
Security update for Xen (important)
2015-09-25 21:10:23
Security update for xen (important)
2015-09-02 19:09:33
mageia
mageia
Updated qemu packages fix security vulnerabilities
2015-09-15 17:55:06
Updated qemu packages fix security vulnerabilities
2015-09-15 17:55:06
Updated qemu package fixes security vulnerability
2015-08-11 23:22:53
f5
f5
K63519101 : Multiple QEMU vulnerabilities
2016-02-16 00:00:00
SOL63519101 - Multiple QEMU vulnerabilities
2016-02-16 00:00:00
gentoo
gentoo
QEMU: Multiple vulnerabilities
2016-02-04 00:00:00