DebianDEBIAN:DLA-573-1:20BBF[SECURITY] [DLA 573-1] qemu security update
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
8.4 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:H
8.5 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
54.6%
Package : qemu
Version : 1.1.2+dfsg-6+deb7u14
CVE ID : CVE-2015-5239 CVE-2016-2857 CVE-2016-4020 CVE-2016-4439
CVE-2016-5403 CVE-2016-6351
Multiple vulnerabilities have been discovered in QEMU, a fast processor
emulator. The Common Vulnerabilities and Exposures project identifies
the following problems:
CVE-2015-5239
Lian Yihan discovered that QEMU incorrectly handled certain payload
messages in the VNC display driver. A malicious guest could use this
issue to cause the QEMU process to hang, resulting in a denial of
service.
CVE-2016-2857
Ling Liu discovered that QEMU incorrectly handled IP checksum
routines. An attacker inside the guest could use this issue to cause
QEMU to crash, resulting in a denial of service, or possibly leak
host memory bytes.
CVE-2016-4020
Donghai Zdh discovered that QEMU incorrectly handled the Task
Priority Register(TPR). A privileged attacker inside the guest could
use this issue to possibly leak host memory bytes.
CVE-2016-4439, CVE-2016-6351
Li Qiang disovered that the emulation of the 53C9X Fast SCSI
Controller is affected by out of bound access issues.
CVE-2016-5403
Zhenhao Hong discovered that a malicious guest administrator can
cause unbounded memory allocation in QEMU (which can cause an
Out-of-Memory condition) by submitting virtio requests without
bothering to wait for completion.
For Debian 7 "Wheezy", these problems have been fixed in version
1.1.2+dfsg-6+deb7u14.
We recommend that you upgrade your qemu packages.
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 8 | i386 | qemu-utils | < 1:2.1+dfsg-12+deb8u8 | qemu-utils_1:2.1+dfsg-12+deb8u8_i386.deb |
| Debian | 8 | i386 | qemu-user-static | < 1:2.1+dfsg-12+deb8u8 | qemu-user-static_1:2.1+dfsg-12+deb8u8_i386.deb |
| Debian | 8 | armel | qemu-system-x86 | < 1:2.1+dfsg-12+deb8u8 | qemu-system-x86_1:2.1+dfsg-12+deb8u8_armel.deb |
| Debian | 7 | i386 | qemu-utils | < 1.1.2+dfsg-6+deb7u14 | qemu-utils_1.1.2+dfsg-6+deb7u14_i386.deb |
| Debian | 7 | amd64 | qemu-user | < 1.1.2+dfsg-6+deb7u14 | qemu-user_1.1.2+dfsg-6+deb7u14_amd64.deb |
| Debian | 7 | armel | qemu-utils | < 1.1.2+dfsg-6+deb7u14 | qemu-utils_1.1.2+dfsg-6+deb7u14_armel.deb |
| Debian | 8 | armel | qemu | < 1:2.1+dfsg-12+deb8u8 | qemu_1:2.1+dfsg-12+deb8u8_armel.deb |
| Debian | 8 | i386 | qemu-system-common | < 1:2.1+dfsg-12+deb8u8 | qemu-system-common_1:2.1+dfsg-12+deb8u8_i386.deb |
| Debian | 8 | armhf | qemu-system-misc | < 1:2.1+dfsg-12+deb8u8 | qemu-system-misc_1:2.1+dfsg-12+deb8u8_armhf.deb |
| Debian | 8 | i386 | qemu-system | < 1:2.1+dfsg-12+deb8u8 | qemu-system_1:2.1+dfsg-12+deb8u8_i386.deb |
Related
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
8.4 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:H
8.5 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
54.6%