Lucene search
Ubuntu.comUB:CVE-2015-5279HistorySep 15, 2015 - 12:00 a.m.
CVE-2015-5279
2015-09-1500:00:00
ubuntu.com
ubuntu.com
12
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
40.4%
Heap-based buffer overflow in the ne2000_receive function in
hw/net/ne2000.c in QEMU before 2.4.0.1 allows guest OS users to cause a
denial of service (instance crash) or possibly execute arbitrary code via
vectors related to receiving packets.
Bugs
Notes
| Author | Note |
|---|---|
| tyhicks | Mitigated by AppArmor confinement when QEMU is managed by libvirt. |
Related
redhat
redhat
(RHSA-2015:1896) Important: qemu-kvm-rhev security update
2015-10-15 12:09:44
(RHSA-2015:1924) Important: qemu-kvm security update
2015-10-22 00:00:00
(RHSA-2015:1925) Important: kvm security update
2015-10-22 00:00:00
nessus
nessus
RHEL 5 : kvm (RHSA-2015:1925)
2015-10-23 00:00:00
Scientific Linux Security Update : xen on SL5.x i386/x86_64 (20151116)
2015-11-17 00:00:00
Oracle Linux 6 : qemu-kvm (ELSA-2015-1924)
2015-10-23 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2015-2065)
2015-11-17 00:00:00
CentOS Update for kmod-kvm CESA-2015:1925 centos5
2015-10-23 00:00:00
CentOS Update for qemu-guest-agent CESA-2015:1924 centos6
2015-10-23 00:00:00
centos
centos
kmod, kvm security update
2015-10-22 19:35:05
qemu security update
2015-10-22 19:30:36
xen security update
2015-11-16 20:32:24
oraclelinux
oraclelinux
kvm security update
2015-10-22 00:00:00
xen security update
2015-11-16 00:00:00
qemu-kvm security update
2015-10-22 00:00:00
cvelist
cvelist
CVE-2015-5279
2015-09-28 16:00:00
nvd
nvd
CVE-2015-5279
2015-09-28 16:59:02
cve
cve
CVE-2015-5279
2015-09-28 16:59:02
debiancve
debiancve
CVE-2015-5279
2015-09-28 16:59:02
prion
prion
Heap overflow
2015-09-28 16:59:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:07:56
freebsd
freebsd
qemu -- denial of service vulnerabilities in NE2000 NIC support
2015-09-15 00:00:00
mageia
mageia
Updated qemu packages fixes security vulnerabilities
2015-10-14 01:40:25
debian
debian
[SECURITY] [DSA 3361-1] qemu security update
2015-09-18 20:09:18
[SECURITY] [DSA 3362-1] qemu-kvm security update
2015-09-18 20:09:30
[SECURITY] [DSA 3362-1] qemu-kvm security update
2015-09-18 20:09:30
osv
osv
qemu-kvm - security update
2015-09-18 00:00:00
qemu - security update
2015-09-18 00:00:00
fedora
fedora
[SECURITY] Fedora 23 Update: qemu-2.4.0-4.fc23
2015-09-24 05:25:32
[SECURITY] Fedora 22 Update: qemu-2.3.1-5.fc22
2015-10-09 10:30:39
[SECURITY] Fedora 21 Update: xen-4.4.3-4.fc21
2015-10-04 23:21:09
arista
arista
Security Advisory 0014
2015-09-23 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2015-09-24 00:00:00
suse
suse
Security update for qemu (important)
2015-10-20 10:09:58
Security update for kvm (important)
2016-06-28 20:07:43
Security update for kvm (important)
2016-07-11 16:39:09
ibm
ibm
securityvulns
securityvulns
libvirt / qemu multiple security vulnerabilities
2015-10-12 00:00:00
[USN-2745-1] QEMU vulnerabilities
2015-10-12 00:00:00
f5
f5
K63519101 : Multiple QEMU vulnerabilities
2016-02-16 00:00:00
SOL63519101 - Multiple QEMU vulnerabilities
2016-02-16 00:00:00
gentoo
gentoo
QEMU: Multiple vulnerabilities
2016-02-04 00:00:00
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
40.4%
Related for UB:CVE-2015-5279