rpm package
suse/kvm&distro=SUSE Linux Enterprise Desktop 11 SP3
pkg:rpm/suse/kvm&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP3
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-8345 | Med | 6.5 | < 1.4.2-37.1 | 1.4.2-37.1 | Apr 13, 2017 | The eepro100 emulator in QEMU qemu-kvm blank allows local guest users to cause a denial of service (application crash and infinite loop) via vectors involving the command block list. | |
| CVE-2015-7512 | Cri | 9.0 | < 1.4.2-37.1 | 1.4.2-37.1 | Jan 8, 2016 | Buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU, when a guest NIC has a larger MTU, allows remote attackers to cause a denial of service (guest OS crash) or execute arbitrary code via a large packet. | |
| CVE-2015-5154 | — | < 1.4.2-0.22.34.3 | 1.4.2-0.22.34.3 | Aug 12, 2015 | Heap-based buffer overflow in the IDE subsystem in QEMU, as used in Xen 4.5.x and earlier, when the container has a CDROM drive enabled, allows local guest users to execute arbitrary code on the host via unspecified ATAPI commands. |
- affected < 1.4.2-37.1fixed 1.4.2-37.1
The eepro100 emulator in QEMU qemu-kvm blank allows local guest users to cause a denial of service (application crash and infinite loop) via vectors involving the command block list.
- affected < 1.4.2-37.1fixed 1.4.2-37.1
Buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU, when a guest NIC has a larger MTU, allows remote attackers to cause a denial of service (guest OS crash) or execute arbitrary code via a large packet.
- CVE-2015-5154Aug 12, 2015affected < 1.4.2-0.22.34.3fixed 1.4.2-0.22.34.3
Heap-based buffer overflow in the IDE subsystem in QEMU, as used in Xen 4.5.x and earlier, when the container has a CDROM drive enabled, allows local guest users to execute arbitrary code on the host via unspecified ATAPI commands.