CVE-2015-5261

Опубликовано: 07 июн. 2016

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 3.6

CVSS3: 7.1

Описание

Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS users to read and write to arbitrary memory locations on the host via guest QXL commands related to surface creation.

Релиз	Статус	Примечание
devel	released	0.12.5-1.1ubuntu2
esm-infra-legacy/trusty	released	0.12.4-0nocelt2ubuntu1.2
esm-infra/xenial	released	0.12.5-1.1ubuntu2
precise	ignored	end of life
precise/esm	DNE	precise was needed
trusty	released	0.12.4-0nocelt2ubuntu1.2
trusty/esm	released	0.12.4-0nocelt2ubuntu1.2
upstream	needs-triage
vivid	released	0.12.5-1ubuntu0.2
vivid/stable-phone-overlay	DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 26%

0.00092

Низкий

3.6 Low

CVSS2

7.1 High

CVSS3

Связанные уязвимости

CVE-2015-5261

redhat

больше 10 лет назад

Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS users to read and write to arbitrary memory locations on the host via guest QXL commands related to surface creation.

CVE-2015-5261

CVSS3: 7.1

nvd

больше 9 лет назад

Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS users to read and write to arbitrary memory locations on the host via guest QXL commands related to surface creation.

CVE-2015-5261

CVSS3: 7.1

debian

больше 9 лет назад

Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS user ...

GHSA-w69p-8vxh-m87g

CVSS3: 7.1

github

больше 3 лет назад

Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS users to read and write to arbitrary memory locations on the host via guest QXL commands related to surface creation.

ELSA-2015-1890

oracle-oval

больше 10 лет назад

ELSA-2015-1890: spice security update (IMPORTANT)

EPSS

Процентиль: 26%

0.00092

Низкий

3.6 Low

CVSS2

7.1 High

CVSS3

CVE-2015-5261

Описание

Пакет spice

Ссылки на источники

Связанные уязвимости