Unrated severityNVD Advisory· Published Jun 15, 2015· Updated May 6, 2026

CVE-2015-3209

Description

Heap-based buffer overflow in the PCNET controller in QEMU allows remote attackers to execute arbitrary code by sending a packet with TXSTATUS_STARTPACKET set and then a crafted packet with TXSTATUS_DEVICEOWNS set.

Affected products

Juniper Networks/Junos Space
cpe:2.3:a:juniper:junos_space:*:*:*:*:*:*:*:*
Range: <=15.1
QEMU/Qemu
cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*
Range: <=2.3.1
Red Hat/Openstack
cpe:2.3:a:redhat:openstack:5.0:*:*:*:*:*:*:*
Red Hat/Virtualization
cpe:2.3:a:redhat:virtualization:3.0:*:*:*:*:*:*:*
SUSE S.A./Linux Enterprise Debuginfo
cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp2:*:*:*:*:*:*
Arista/Eos4 versions
cpe:2.3:o:arista:eos:4.12:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:o:arista:eos:4.12:*:*:*:*:*:*:*
- cpe:2.3:o:arista:eos:4.13:*:*:*:*:*:*:*
- cpe:2.3:o:arista:eos:4.14:*:*:*:*:*:*:*
- cpe:2.3:o:arista:eos:4.15:*:*:*:*:*:*:*
Canonical (company)/Ubuntu Linux4 versions
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*+ 3 more
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*
Debian/Debian Linux2 versions
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Fedoraproject/Fedora3 versions
cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Desktop
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Eus
cpe:2.3:o:redhat:enterprise_linux_eus:6.6:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Server2 versions
cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Server Aus
cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Server Tus
cpe:2.3:o:redhat:enterprise_linux_server_tus:6.6:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Workstation2 versions
cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
SUSE S.A./Linux Enterprise Desktop2 versions
cpe:2.3:o:suse:linux_enterprise_desktop:11:sp3:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:suse:linux_enterprise_desktop:11:sp3:*:*:*:*:*:*
- cpe:2.3:o:suse:linux_enterprise_desktop:12:-:*:*:*:*:*:*
SUSE S.A./Linux Enterprise Server5 versions
cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:ltss:*:*:*+ 4 more
- cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:ltss:*:*:*
- cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:ltss:*:*:*
- cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:ltss:*:*:*
- cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:-:*:*
- cpe:2.3:o:suse:linux_enterprise_server:12:-:*:*:*:*:*:*
SUSE S.A./Linux Enterprise Software Development Kit2 versions
cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp3:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp3:*:*:*:*:*:*
- cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:-:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

kb.juniper.net/InfoCenter/indexnvdThird Party Advisory
lists.fedoraproject.org/pipermail/package-announce/2015-June/160669.htmlnvdThird Party Advisory
lists.fedoraproject.org/pipermail/package-announce/2015-June/160677.htmlnvdThird Party Advisory
lists.fedoraproject.org/pipermail/package-announce/2015-June/160685.htmlnvdThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2015-06/msg00004.htmlnvdMailing ListThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2015-06/msg00007.htmlnvdMailing ListThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2015-06/msg00027.htmlnvdMailing ListThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2015-06/msg00029.htmlnvdMailing ListThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2015-06/msg00030.htmlnvdMailing ListThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2015-07/msg00014.htmlnvdMailing ListThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2015-08/msg00020.htmlnvdMailing ListThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2015-09/msg00015.htmlnvdMailing ListThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2015-09/msg00027.htmlnvdMailing ListThird Party Advisory
rhn.redhat.com/errata/RHSA-2015-1087.htmlnvdThird Party Advisory
rhn.redhat.com/errata/RHSA-2015-1088.htmlnvdThird Party Advisory
rhn.redhat.com/errata/RHSA-2015-1089.htmlnvdThird Party Advisory
rhn.redhat.com/errata/RHSA-2015-1189.htmlnvdThird Party Advisory
www.debian.org/security/2015/dsa-3284nvdThird Party Advisory
www.debian.org/security/2015/dsa-3285nvdThird Party Advisory
www.debian.org/security/2015/dsa-3286nvdThird Party Advisory
www.securityfocus.com/bid/75123nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1032545nvdThird Party AdvisoryVDB Entry
www.ubuntu.com/usn/USN-2630-1nvdThird Party Advisory
xenbits.xen.org/xsa/advisory-135.htmlnvdThird Party Advisory
kb.juniper.net/JSA10783nvdThird Party Advisory
security.gentoo.org/glsa/201510-02nvdThird Party Advisory
security.gentoo.org/glsa/201604-03nvdThird Party Advisory
www.arista.com/en/support/advisories-notices/security-advisories/1180-security-advisory-13nvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.014
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000