Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2015-5154

Опубликовано: 12 авг. 2015
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 7.2

Описание

Heap-based buffer overflow in the IDE subsystem in QEMU, as used in Xen 4.5.x and earlier, when the container has a CDROM drive enabled, allows local guest users to execute arbitrary code on the host via unspecified ATAPI commands.

РелизСтатусПримечание
devel

released

1:2.3+dfsg-5ubuntu3
esm-infra-legacy/trusty

released

2.0.0+dfsg-2ubuntu1.15
precise

DNE

trusty

released

2.0.0+dfsg-2ubuntu1.15
trusty/esm

released

2.0.0+dfsg-2ubuntu1.15
upstream

needs-triage

utopic

ignored

end of life
vivid

released

1:2.2+dfsg-5expubuntu9.3

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

precise

not-affected

1.0+noroms-0ubuntu14.23
trusty

DNE

trusty/esm

DNE

upstream

needs-triage

utopic

DNE

vivid

DNE

Показывать по

РелизСтатусПримечание
devel

not-affected

code not present
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [4.4.2-0ubuntu0.14.04.2]]
precise

released

4.1.6.1-0ubuntu0.12.04.6
trusty

released

4.4.2-0ubuntu0.14.04.2
trusty/esm

DNE

trusty was released [4.4.2-0ubuntu0.14.04.2]
upstream

needs-triage

utopic

ignored

end of life
vivid

not-affected

code not present

Показывать по

Ссылки на источники

EPSS

Процентиль: 43%
0.00202
Низкий

7.2 High

CVSS2

Связанные уязвимости

redhat логотип

CVE-2015-5154

redhat
больше 10 лет назад

Heap-based buffer overflow in the IDE subsystem in QEMU, as used in Xen 4.5.x and earlier, when the container has a CDROM drive enabled, allows local guest users to execute arbitrary code on the host via unspecified ATAPI commands.

nvd логотип

CVE-2015-5154

nvd
больше 10 лет назад

Heap-based buffer overflow in the IDE subsystem in QEMU, as used in Xen 4.5.x and earlier, when the container has a CDROM drive enabled, allows local guest users to execute arbitrary code on the host via unspecified ATAPI commands.

debian логотип

CVE-2015-5154

debian
больше 10 лет назад

Heap-based buffer overflow in the IDE subsystem in QEMU, as used in Xe ...

suse-cvrf логотип

SUSE-SU-2015:1472-1

suse-cvrf
около 10 лет назад

Security update for kvm

suse-cvrf логотип

SUSE-SU-2015:1455-1

suse-cvrf
больше 10 лет назад

Security update for kvm

EPSS

Процентиль: 43%
0.00202
Низкий

7.2 High

CVSS2