Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-5165HistoryAug 12, 2015 - 2:59 p.m.
CVE-2015-5165
2015-08-1214:59:00
Debian Security Bug Tracker
security-tracker.debian.org
18
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.003 Low
EPSS
Percentile
71.0%
The C+ mode offload emulation in the RTL8139 network card device model in QEMU, as used in Xen 4.5.x and earlier, allows remote attackers to read process heap memory via unspecified vectors.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | qemu | < 1:2.4+dfsg-1a | qemu_1:2.4+dfsg-1a_all.deb |
| Debian | 11 | all | qemu | < 1:2.4+dfsg-1a | qemu_1:2.4+dfsg-1a_all.deb |
| Debian | 10 | all | qemu | < 1:2.4+dfsg-1a | qemu_1:2.4+dfsg-1a_all.deb |
| Debian | 999 | all | qemu | < 1:2.4+dfsg-1a | qemu_1:2.4+dfsg-1a_all.deb |
| Debian | 13 | all | qemu | < 1:2.4+dfsg-1a | qemu_1:2.4+dfsg-1a_all.deb |
| Debian | 12 | all | xen | < 4.4.0-1 | xen_4.4.0-1_all.deb |
| Debian | 11 | all | xen | < 4.4.0-1 | xen_4.4.0-1_all.deb |
| Debian | 10 | all | xen | < 4.4.0-1 | xen_4.4.0-1_all.deb |
| Debian | 999 | all | xen | < 4.4.0-1 | xen_4.4.0-1_all.deb |
| Debian | 13 | all | xen | < 4.4.0-1 | xen_4.4.0-1_all.deb |
Related
redhat
redhat
(RHSA-2015:1739) Moderate: qemu-kvm-rhev security update
2015-09-07 15:43:52
(RHSA-2015:1833) Moderate: qemu-kvm security update
2015-09-22 00:00:00
(RHSA-2015:1683) Moderate: qemu-kvm-rhev security update
2015-08-25 00:00:00
nessus
nessus
RHEL 7 : qemu-kvm (RHSA-2015:1793)
2015-09-17 00:00:00
Citrix XenServer QEMU RTL8139 Guest Network Device Information Disclosure (CTX201717)
2015-08-27 00:00:00
Oracle Linux 6 : qemu-kvm (ELSA-2015-1833)
2015-09-23 00:00:00
ubuntucve
ubuntucve
CVE-2015-5165
2015-08-12 00:00:00
centos
centos
libcacard, qemu security update
2015-09-16 12:50:23
qemu security update
2015-09-22 18:40:09
openvas
openvas
Vulnerability in Citrix XenServer Could Result in Information Disclosure (CTX201717)
2015-08-28 00:00:00
Oracle: Security Advisory (ELSA-2015-1793)
2015-10-06 00:00:00
RedHat Update for qemu-kvm RHSA-2015:1793-01
2015-09-16 00:00:00
oraclelinux
oraclelinux
qemu-kvm security fix update
2015-09-15 00:00:00
qemu-kvm security update
2015-09-22 00:00:00
qemu-kvm security update
2016-05-16 00:00:00
veracode
veracode
Information Disclosure
2019-01-15 09:07:21
freebsd
freebsd
ibm
ibm
prion
prion
Design/Logic Flaw
2015-08-12 14:59:00
xen
xen
QEMU leak of uninitialized heap memory in rtl8139 device model
2015-08-03 12:00:00
cve
cve
CVE-2015-5165
2015-08-12 14:59:00
debian
debian
[SECURITY] [DSA 3349-1] qemu-kvm security update
2015-09-02 16:22:36
[SECURITY] [DSA 3349-1] qemu-kvm security update
2015-09-02 16:22:36
[SECURITY] [DSA 3348-1] qemu security update
2015-09-02 16:22:30
fedora
fedora
[SECURITY] Fedora 21 Update: xen-4.4.3-3.fc21
2015-09-26 21:53:13
[SECURITY] Fedora 22 Update: xen-4.5.1-8.fc22
2015-09-27 03:27:49
[SECURITY] Fedora 23 Update: xen-4.5.1-6.fc23
2015-09-01 18:39:24
myhack58
myhack58
osv
osv
qemu-kvm - security update
2015-09-02 00:00:00
qemu - security update
2015-09-02 00:00:00
xen - security update
2016-05-17 00:00:00
suse
suse
Security update for xen (important)
2015-08-21 16:11:31
Security update for Xen (important)
2015-09-25 21:10:23
Security update for xen (important)
2015-09-02 19:09:33
mageia
mageia
Updated qemu packages fix security vulnerabilities
2015-09-15 17:55:06
Updated qemu packages fix security vulnerabilities
2015-09-15 17:55:06
Updated xen packages fix security vulnerabilities
2016-03-07 14:20:30
securityvulns
securityvulns
[USN-2724-1] QEMU vulnerabilities
2015-08-31 00:00:00
libvirt / qemu multiple security vulnerabilities
2015-08-31 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2015-08-27 00:00:00
arista
arista
Security Advisory 0013
2015-09-04 00:00:00
f5
f5
SOL63519101 - Multiple QEMU vulnerabilities
2016-02-16 00:00:00
K63519101 : Multiple QEMU vulnerabilities
2016-02-16 00:00:00
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.003 Low
EPSS
Percentile
71.0%
Related for DEBIANCVE:CVE-2015-5165