Lucene search

K

Veracode Vulnerability DatabaseVERACODE:11814

HistoryJan 15, 2019 - 9:07 a.m.

Denial Of Service (DoS)

2019-01-1509:07:56

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

6

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

qemu-kvm is vulnerable to denial of service. A heap buffer overflow flaw was found in the way QEMU’s NE2000 NIC emulation implementation handled certain packets received over the network. A privileged user inside a guest could use this flaw to crash the QEMU instance (denial of service) or potentially execute arbitrary code on the host.

CPENameOperatorVersion
qemu-kvm-rheveq0.12.1.2__2.351.el6
qemu-kvm-rheveq0.12.1.2__2.415.el6_5.8
qemu-kvm-rheveq0.12.1.2__2.415.el6_5.3
qemu-kvm-rheveq0.12.1.2__2.355.el6_4.1
qemu-kvm-rheveq0.12.1.2__2.355.el6_4.5
qemu-kvm-rheveq0.12.1.2__2.448.el6_6.2
qemu-kvm-rheveq0.12.1.2__2.415.el6_5.6
qemu-kvm-rheveq0.12.1.2__2.295.el6_3.8
qemu-kvm-rheveq0.12.1.2__2.355.el6_4.3
qemu-kvm-rheveq0.12.1.2__2.355.el6_4.4

Rows per page:

1-10 of 2141

References

git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=7aa2bcad0ca837dd6d4bf4fa38a80314b4a6b755

git.qemu.org/?p=qemu.git;a=commit;h=7aa2bcad0ca837dd6d4bf4fa38a80314b4a6b755

lists.fedoraproject.org/pipermail/package-announce/2015-October/169036.html

lists.fedoraproject.org/pipermail/package-announce/2015-October/169039.html

lists.fedoraproject.org/pipermail/package-announce/2015-September/167369.html

lists.opensuse.org/opensuse-security-announce/2015-10/msg00019.html

rhn.redhat.com/errata/RHSA-2015-1896.html

rhn.redhat.com/errata/RHSA-2015-1923.html

rhn.redhat.com/errata/RHSA-2015-1924.html

rhn.redhat.com/errata/RHSA-2015-1925.html

www.debian.org/security/2015/dsa-3361

www.debian.org/security/2015/dsa-3362

www.openwall.com/lists/oss-security/2015/09/15/3

www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

www.securityfocus.com/bid/76746

www.securitytracker.com/id/1033569

access.redhat.com/errata/RHSA-2015:1896

access.redhat.com/errata/RHSA-2015:1923

access.redhat.com/errata/RHSA-2015:1924

access.redhat.com/errata/RHSA-2015:1925

access.redhat.com/errata/RHSA-2015:2065

access.redhat.com/security/cve/CVE-2015-5279

access.redhat.com/security/updates/classification/#important

bugzilla.redhat.com/show_bug.cgi?id=1256672

lists.gnu.org/archive/html/qemu-devel/2015-09/msg03984.html

rhn.redhat.com/errata/RHSA-2015-1896.html

security.gentoo.org/glsa/201602-01

www.arista.com/en/support/advisories-notices/security-advisories/1188-security-advisory-14

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

Related for VERACODE:11814

nessus31 centos3 oraclelinux4 redhat5 debiancve1 cve1 openvas24 prion1 ubuntucve1 freebsd1 mageia1 fedora6 debian4 osv2 securityvulns2 ibm2 suse3 ubuntu1 arista1 f52 gentoo1