Lucene search
Gentoo FoundationMGASA-2015-0149HistoryApr 15, 2015 - 12:01 p.m.
Updated qemu packages fix security vulnerabilities
2015-04-1512:01:28
Gentoo Foundation
advisories.mageia.org
15
0.011 Low
EPSS
Percentile
84.4%
Updated qemu packages fix security vulnerabilities: A denial of service flaw was found in the way QEMU handled malformed Physical Region Descriptor Table (PRDT) data sent to the host’s IDE and/or AHCI controller emulation. A privileged guest user could use this flaw to crash the system (rhbz#1204919). It was found that the QEMU’s websocket frame decoder processed incoming frames without limiting resources used to process the header and the payload. An attacker able to access a guest’s VNC console could use this flaw to trigger a denial of service on the host by exhausting all available memory and CPU (CVE-2015-1779).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 4 | noarch | qemu | < 1.6.2-1.9 | qemu-1.6.2-1.9.mga4 |
Related
nessus
nessus
FreeBSD : qemu -- denial of service vulnerability (a228c7a0-ba66-11e6-b1cf-14dae9d210b8)
2016-12-05 00:00:00
Mandriva Linux Security Advisory : qemu (MDVSA-2015:210)
2015-04-28 00:00:00
RHEL 7 : qemu-kvm-rhev (RHSA-2015:1931)
2018-09-06 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: qemu-2.3.0-0.3.rc2.fc22
2015-04-21 18:50:53
[SECURITY] Fedora 21 Update: qemu-2.1.3-5.fc21
2015-04-13 07:05:24
[SECURITY] Fedora 21 Update: qemu-2.1.3-7.fc21
2015-05-17 06:38:09
redhat
redhat
(RHSA-2015:1931) Moderate: qemu-kvm-rhev security update
2015-10-26 18:09:05
(RHSA-2015:1943) Moderate: qemu-kvm security update
2015-10-27 00:00:00
openvas
openvas
CentOS Update for libcacard CESA-2015:1943 centos7
2015-10-29 00:00:00
RedHat Update for qemu-kvm RHSA-2015:1943-01
2015-10-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:0870-1)
2021-06-09 00:00:00
freebsd
freebsd
qemu -- denial of service vulnerability
2015-03-23 00:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in qemu affect PowerKVM
2018-06-18 01:33:29
prion
prion
Design/Logic Flaw
2016-01-12 19:59:00
centos
centos
libcacard, qemu security update
2015-10-28 09:28:27
oraclelinux
oraclelinux
qemu-kvm security update
2015-10-27 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:08:08
securityvulns
securityvulns
[ MDVSA-2015:210 ] qemu
2015-05-05 00:00:00
[USN-2608-1] QEMU vulnerabilities
2015-05-17 00:00:00
libvirt / qemu security vulnerabilities
2015-05-17 00:00:00
suse
suse
Security update for kvm (important)
2015-05-13 22:04:49
Security update for qemu (important)
2015-05-18 17:05:01
Security update for xen (important)
2016-03-30 20:07:33
cvelist
cvelist
CVE-2015-1779
2016-01-12 19:00:00
cve
cve
CVE-2015-1779
2016-01-12 19:59:00
debiancve
debiancve
CVE-2015-1779
2016-01-12 19:59:00
ubuntucve
ubuntucve
CVE-2015-1779
2015-03-25 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2015-05-13 00:00:00
debian
debian
[SECURITY] [DSA 3259-1] qemu security update
2015-05-13 16:08:21
osv
osv
qemu - security update
2015-05-13 00:00:00
gentoo
gentoo
QEMU: Multiple vulnerabilities
2016-02-04 00:00:00