CVE-2015-5278

Опубликовано: 15 сент. 2015

Источник: redhat

CVSS2: 4.3

Описание

The ne2000_receive function in hw/net/ne2000.c in QEMU before 2.4.0.1 allows attackers to cause a denial of service (infinite loop and instance crash) or possibly execute arbitrary code via vectors related to receiving packets.

A flaw was found where a QEMU emulator built with NE2000 NIC emulation support was vulnerable to an infinite loop issue that occurred when receiving packets over the network. A privileged user inside a guest could use this flaw to crash the QEMU instance, resulting in a denial of service.

Отчет

This issue affects the versions of kvm and xen packages as shipped with Red Hat Enterprise Linux 5. This issue affects the versions of the qemu-kvm packages as shipped with Red Hat Enterprise Linux 6 and 7. This issue affects the Red Hat Enterprise Linux 6 based versions of qemu-kvm-rhev packages as shipped with Red Hat Enterprise Virtualization 3. This issue affects the Red Hat Enterprise Linux 7 based versions of the qemu-kvm-rhev packages as shipped with Red Hat Enterprise Virtualization 3.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	kvm	Will not fix
Red Hat Enterprise Linux 6	qemu-kvm	Will not fix
Red Hat Enterprise Linux 7	qemu-kvm	Will not fix
Red Hat Enterprise Linux 7	qemu-kvm-rhev	Will not fix
Red Hat Enterprise Linux OpenStack Platform 5 (Icehouse)	qemu-kvm-rhev	Will not fix
Red Hat Enterprise Linux OpenStack Platform 6 (Juno)	qemu-kvm-rhev	Will not fix
Red Hat Enterprise Linux OpenStack Platform 7 (Kilo)	qemu-kvm-rhev	Will not fix