exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

Ubuntu Security Notice USN-2630-1

Ubuntu Security Notice USN-2630-1
Posted Jun 10, 2015
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2630-1 - Matt Tait discovered that QEMU incorrectly handled the virtual PCNET driver. A malicious guest could use this issue to cause a denial of service, or possibly execute arbitrary code on the host as the user running the QEMU process. In the default installation, when QEMU is used with libvirt, attackers would be isolated by the libvirt AppArmor profile. Kurt Seifried discovered that QEMU incorrectly handled certain temporary files. A local attacker could use this issue to cause a denial of service. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, local
systems | linux, ubuntu
advisories | CVE-2015-3209, CVE-2015-4037, CVE-2015-4103, CVE-2015-4104, CVE-2015-4105, CVE-2015-4106
SHA-256 | 0cf8d12b43821d761977856e4b4c7a6239ab8e88288255906bfafed04c494023

Ubuntu Security Notice USN-2630-1

Change Mirror Download
============================================================================
Ubuntu Security Notice USN-2630-1
June 10, 2015

qemu, qemu-kvm vulnerabilities
============================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 15.04
- Ubuntu 14.10
- Ubuntu 14.04 LTS
- Ubuntu 12.04 LTS

Summary:

Several security issues were fixed in QEMU.

Software Description:
- qemu: Machine emulator and virtualizer
- qemu-kvm: Machine emulator and virtualizer

Details:

Matt Tait discovered that QEMU incorrectly handled the virtual PCNET
driver. A malicious guest could use this issue to cause a denial of
service, or possibly execute arbitrary code on the host as the user running
the QEMU process. In the default installation, when QEMU is used with
libvirt, attackers would be isolated by the libvirt AppArmor profile.
(CVE-2015-3209)

Kurt Seifried discovered that QEMU incorrectly handled certain temporary
files. A local attacker could use this issue to cause a denial of service.
(CVE-2015-4037)

Jan Beulich discovered that the QEMU Xen code incorrectly restricted write
access to the host MSI message data field. A malicious guest could use this
issue to cause a denial of service. This issue only applied to Ubuntu 14.04
LTS, Ubuntu 14.10 and Ubuntu 15.04. (CVE-2015-4103)

Jan Beulich discovered that the QEMU Xen code incorrectly restricted access
to the PCI MSI mask bits. A malicious guest could use this issue to cause a
denial of service. This issue only applied to Ubuntu 14.04 LTS, Ubuntu
14.10 and Ubuntu 15.04. (CVE-2015-4104)

Jan Beulich discovered that the QEMU Xen code incorrectly handled MSI-X
error messages. A malicious guest could use this issue to cause a denial of
service. This issue only applied to Ubuntu 14.04 LTS, Ubuntu 14.10 and
Ubuntu 15.04. (CVE-2015-4105)

Jan Beulich discovered that the QEMU Xen code incorrectly restricted write
access to the PCI config space. A malicious guest could use this issue to
cause a denial of service, obtain sensitive information, or possibly
execute arbitrary code. This issue only applied to Ubuntu 14.04 LTS,
Ubuntu 14.10 and Ubuntu 15.04. (CVE-2015-4106)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 15.04:
qemu-system 1:2.2+dfsg-5expubuntu9.2
qemu-system-aarch64 1:2.2+dfsg-5expubuntu9.2
qemu-system-arm 1:2.2+dfsg-5expubuntu9.2
qemu-system-mips 1:2.2+dfsg-5expubuntu9.2
qemu-system-misc 1:2.2+dfsg-5expubuntu9.2
qemu-system-ppc 1:2.2+dfsg-5expubuntu9.2
qemu-system-sparc 1:2.2+dfsg-5expubuntu9.2
qemu-system-x86 1:2.2+dfsg-5expubuntu9.2

Ubuntu 14.10:
qemu-system 2.1+dfsg-4ubuntu6.7
qemu-system-aarch64 2.1+dfsg-4ubuntu6.7
qemu-system-arm 2.1+dfsg-4ubuntu6.7
qemu-system-mips 2.1+dfsg-4ubuntu6.7
qemu-system-misc 2.1+dfsg-4ubuntu6.7
qemu-system-ppc 2.1+dfsg-4ubuntu6.7
qemu-system-sparc 2.1+dfsg-4ubuntu6.7
qemu-system-x86 2.1+dfsg-4ubuntu6.7

Ubuntu 14.04 LTS:
qemu-system 2.0.0+dfsg-2ubuntu1.13
qemu-system-aarch64 2.0.0+dfsg-2ubuntu1.13
qemu-system-arm 2.0.0+dfsg-2ubuntu1.13
qemu-system-mips 2.0.0+dfsg-2ubuntu1.13
qemu-system-misc 2.0.0+dfsg-2ubuntu1.13
qemu-system-ppc 2.0.0+dfsg-2ubuntu1.13
qemu-system-sparc 2.0.0+dfsg-2ubuntu1.13
qemu-system-x86 2.0.0+dfsg-2ubuntu1.13

Ubuntu 12.04 LTS:
qemu-kvm 1.0+noroms-0ubuntu14.23

After a standard system update you need to restart all QEMU virtual
machines to make all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2630-1
CVE-2015-3209, CVE-2015-4037, CVE-2015-4103, CVE-2015-4104,
CVE-2015-4105, CVE-2015-4106

Package Information:
https://launchpad.net/ubuntu/+source/qemu/1:2.2+dfsg-5expubuntu9.2
https://launchpad.net/ubuntu/+source/qemu/2.1+dfsg-4ubuntu6.7
https://launchpad.net/ubuntu/+source/qemu/2.0.0+dfsg-2ubuntu1.13
https://launchpad.net/ubuntu/+source/qemu-kvm/1.0+noroms-0ubuntu14.23
Login or Register to add favorites

File Archive:

January 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jan 1st
    0 Files
  • 2
    Jan 2nd
    13 Files
  • 3
    Jan 3rd
    5 Files
  • 4
    Jan 4th
    5 Files
  • 5
    Jan 5th
    9 Files
  • 6
    Jan 6th
    5 Files
  • 7
    Jan 7th
    0 Files
  • 8
    Jan 8th
    0 Files
  • 9
    Jan 9th
    18 Files
  • 10
    Jan 10th
    31 Files
  • 11
    Jan 11th
    30 Files
  • 12
    Jan 12th
    33 Files
  • 13
    Jan 13th
    25 Files
  • 14
    Jan 14th
    0 Files
  • 15
    Jan 15th
    0 Files
  • 16
    Jan 16th
    7 Files
  • 17
    Jan 17th
    25 Files
  • 18
    Jan 18th
    38 Files
  • 19
    Jan 19th
    6 Files
  • 20
    Jan 20th
    21 Files
  • 21
    Jan 21st
    0 Files
  • 22
    Jan 22nd
    0 Files
  • 23
    Jan 23rd
    24 Files
  • 24
    Jan 24th
    68 Files
  • 25
    Jan 25th
    22 Files
  • 26
    Jan 26th
    20 Files
  • 27
    Jan 27th
    17 Files
  • 28
    Jan 28th
    0 Files
  • 29
    Jan 29th
    0 Files
  • 30
    Jan 30th
    0 Files
  • 31
    Jan 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close