MGASA-2015-0310 Updated qemu package fixes security vulnerability

🗓️ 11 Aug 2015 20:22:53Reported by GoogleType

osv🔗 osv.dev👁 5 Views

QEMU updated to fix vulnerabilities causing denial of service and potential arbitrary code execution.

Reporter	Title	Published	Views	Family All 471
0day.today	QEMU Programmable Interrupt Timer Controller Heap Overflow Exploit	27 Aug 201500:00	–	zdt
FreeBSD	qemu -- buffer overflow vulnerability in virtio-serial message exchanges	6 Aug 201500:00	–	freebsd
FreeBSD	xen-tools -- Unmediated PCI register access in qemu	2 Jun 201500:00	–	freebsd
FreeBSD	xen-tools -- PCI MSI mask bits inadvertently exposed to guests	2 Jun 201500:00	–	freebsd
FreeBSD	qemu -- Heap overflow in QEMU PCNET controller, allowing guest to host escape (CVE-2015-3209)	10 Apr 201500:00	–	freebsd
FreeBSD	qemu -- code execution on host machine	17 Jun 201500:00	–	freebsd
FreeBSD	xen-tools -- Potential unintended writes to host MSI message data field via qemu	2 Jun 201500:00	–	freebsd
FreeBSD	xen-tools -- Guest triggerable qemu MSI-X pass-through error messages	2 Jun 201500:00	–	freebsd
FreeBSD	qemu, xen-tools -- QEMU heap overflow flaw with certain ATAPI commands	27 Jul 201500:00	–	freebsd
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Qemu affect PowerKVM (Multiple Vulnerabilities)	18 Jun 201801:29	–	ibm

Source	Link
advisories	www.advisories.mageia.org/MGASA-2015-0310.html
bugs	www.bugs.mageia.org/show_bug.cgi
ubuntu	www.ubuntu.com/usn/usn-2630-1/
rhn	www.rhn.redhat.com/errata/RHSA-2015-1507.html
openwall	www.openwall.com/lists/oss-security/2015/08/06/5

16 Apr 2026 06:23Current

8.7High risk

Vulners AI Score8.7

CVSS 27.8

CVSS 3.16.5

EPSS0.14897