Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2015-5745

Buffer overflow in the send_control_msg function in hw/char/virtio-serial-bus.c in QEMU before 2.4.0 allows guest users to cause a denial of service (QEMU process crash) via a crafted virtio control message.

Published

2020-01-23T20:15:12.090

Last Modified

2024-11-21T02:33:45.560

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

CVSSv2 Vector

AV:N/AC:L/Au:S/C:N/I:N/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: SINGLE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: PARTIAL

Exploitability Score

8.0

Impact Score

2.9

Weaknesses

Type: Primary
CWE-120

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	qemu	qemu	< 2.4.0	Yes
Operating System	fedoraproject	fedora	21	Yes
Operating System	fedoraproject	fedora	22	Yes
Operating System	fedoraproject	fedora	23	Yes
Operating System	arista	eos	4.12	Yes
Operating System	arista	eos	4.13	Yes
Operating System	arista	eos	4.14	Yes
Operating System	arista	eos	4.15	Yes

References

http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168077.html Mailing List, Third Party Advisory ([email protected])
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168646.html Mailing List, Third Party Advisory ([email protected])
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168671.html Mailing List, Third Party Advisory ([email protected])
http://www.openwall.com/lists/oss-security/2015/08/06/3 Mailing List, Third Party Advisory ([email protected])
http://www.openwall.com/lists/oss-security/2015/08/06/5 Exploit, Mailing List, Third Party Advisory ([email protected])
https://github.com/qemu/qemu/commit/7882080388be5088e72c425b02223c02e6cb4295 Patch, Third Party Advisory ([email protected])
https://lists.gnu.org/archive/html/qemu-devel/2015-07/msg05458.html Mailing List, Patch, Third Party Advisory ([email protected])
https://www.arista.com/en/support/advisories-notices/security-advisories/1180-security-advisory-13 Third Party Advisory ([email protected])
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168077.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168646.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168671.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2015/08/06/3 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2015/08/06/5 Exploit, Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/qemu/qemu/commit/7882080388be5088e72c425b02223c02e6cb4295 Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.gnu.org/archive/html/qemu-devel/2015-07/msg05458.html Mailing List, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.arista.com/en/support/advisories-notices/security-advisories/1180-security-advisory-13 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)