Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2015-3456

Опубликовано: 13 мая 2015
Источник: debian
EPSS Средний

Описание

The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
qemufixed1:2.3+dfsg-3package
qemufixed1.1.2+dfsg-6a+deb7u7wheezypackage
qemu-kvmremovedpackage
qemu-kvmfixed1.1.2+dfsg-6+deb7u7wheezypackage
xenfixed4.4.0-1package
xenend-of-lifesqueezepackage
xen-qemu-dm-4.0removedpackage
xen-qemu-dm-4.0end-of-lifesqueezepackage
virtualboxfixed4.3.28-dfsg-1package
virtualbox-oseremovedpackage

Примечания

  • Xen switched to qemu-system in 4.4.0-1

  • http://xenbits.xen.org/xsa/advisory-133.html

  • http://www.oracle.com/technetwork/topics/security/alert-cve-2015-3456-2542656.html

  • http://venom.crowdstrike.com/

EPSS

Процентиль: 96%
0.28587
Средний

Связанные уязвимости

ubuntu логотип

CVE-2015-3456

ubuntu
больше 10 лет назад

The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.

redhat логотип

CVE-2015-3456

redhat
больше 10 лет назад

The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.

nvd логотип

CVE-2015-3456

nvd
больше 10 лет назад

The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.

suse-cvrf логотип

SUSE-SU-2015:0927-1

suse-cvrf
больше 10 лет назад

Security update for Xen

github логотип

GHSA-f822-h734-j822

github
больше 3 лет назад

The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.

EPSS

Процентиль: 96%
0.28587
Средний