CVE-2015-4037

Related Files

Debian Security Advisory 3285-1

Posted Jun 15, 2015

Authored by Debian | Site debian.org

Debian Linux Security Advisory 3285-1 - Several vulnerabilities were discovered in qemu-kvm, a full virtualization solution on x86 hardware.

tags | advisory, x86, vulnerability

systems | linux, debian

advisories | CVE-2015-3209, CVE-2015-4037

SHA-256 | e33433c17499dd79c1bb1dae8bdae24e5514dc76b4688c07b38375f0c1b0cb3d

Download | Favorite | View

Ubuntu Security Notice USN-2630-1

Posted Jun 10, 2015

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2630-1 - Matt Tait discovered that QEMU incorrectly handled the virtual PCNET driver. A malicious guest could use this issue to cause a denial of service, or possibly execute arbitrary code on the host as the user running the QEMU process. In the default installation, when QEMU is used with libvirt, attackers would be isolated by the libvirt AppArmor profile. Kurt Seifried discovered that QEMU incorrectly handled certain temporary files. A local attacker could use this issue to cause a denial of service. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, local

systems | linux, ubuntu

advisories | CVE-2015-3209, CVE-2015-4037, CVE-2015-4103, CVE-2015-4104, CVE-2015-4105, CVE-2015-4106

SHA-256 | 0cf8d12b43821d761977856e4b4c7a6239ab8e88288255906bfafed04c494023

Download | Favorite | View