1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
|
PublicDateAtUSN: 2015-11-30
Candidate: CVE-2015-7512
PublicDate: 2016-01-08
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7512
https://lists.gnu.org/archive/html/qemu-devel/2015-11/msg06341.html
http://www.ubuntu.com/usn/usn-2828-1
Description:
Buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU,
when a guest NIC has a larger MTU, allows remote attackers to cause a
denial of service (guest OS crash) or execute arbitrary code via a large
packet.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by: Ling Liu and Jason Wang
Assigned-to: mdeslaur
Patches_qemu-kvm:
upstream_qemu-kvm: needs-triage
precise_qemu-kvm: released (1.0+noroms-0ubuntu14.26)
trusty_qemu-kvm: DNE
vivid_qemu-kvm: DNE
wily_qemu-kvm: DNE
devel_qemu-kvm: DNE
Patches_qemu:
upstream_qemu: needs-triage
precise_qemu: DNE
trusty_qemu: released (2.0.0+dfsg-2ubuntu1.21)
vivid_qemu: released (1:2.2+dfsg-5expubuntu9.7)
wily_qemu: released (1:2.3+dfsg-5ubuntu9.1)
devel_qemu: released (1:2.4+dfsg-4ubuntu3)
|