CVE-2015-5239

Опубликовано: 23 янв. 2020

Источник: debian

Описание

Integer overflow in the VNC display driver in QEMU before 2.1.0 allows attachers to cause a denial of service (process crash) via a CLIENT_CUT_TEXT message, which triggers an infinite loop.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
qemu	fixed	2.1+dfsg-1		package
qemu	end-of-life		squeeze	package
qemu-kvm	removed			package
qemu-kvm	end-of-life		squeeze	package

Примечания

Upstream fix: http://git.qemu.org/?p=qemu.git;a=commit;h=f9a70e79391f6d7c2a912d785239ee8effc1922d (v2.1.0-rc0)

Связанные уязвимости

CVE-2015-5239

CVSS3: 6.5

ubuntu

около 6 лет назад

Integer overflow in the VNC display driver in QEMU before 2.1.0 allows attachers to cause a denial of service (process crash) via a CLIENT_CUT_TEXT message, which triggers an infinite loop.

CVE-2015-5239

redhat

больше 11 лет назад

Integer overflow in the VNC display driver in QEMU before 2.1.0 allows attachers to cause a denial of service (process crash) via a CLIENT_CUT_TEXT message, which triggers an infinite loop.

CVE-2015-5239

CVSS3: 6.5

nvd

около 6 лет назад

Integer overflow in the VNC display driver in QEMU before 2.1.0 allows attachers to cause a denial of service (process crash) via a CLIENT_CUT_TEXT message, which triggers an infinite loop.

GHSA-9mm7-7f84-98c9

CVSS3: 6.5

github

больше 3 лет назад

Integer overflow in the VNC display driver in QEMU before 2.1.0 allows attachers to cause a denial of service (process crash) via a CLIENT_CUT_TEXT message, which triggers an infinite loop.

SUSE-SU-2015:1952-1

suse-cvrf

больше 10 лет назад

Security update for xen