rpm package
suse/xen&distro=SUSE Linux Enterprise Server 11 SP1-LTSS
pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP1-LTSS
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-5165 | — | < 4.0.3_21548_18-29.1 | 4.0.3_21548_18-29.1 | Aug 12, 2015 | The C+ mode offload emulation in the RTL8139 network card device model in QEMU, as used in Xen 4.5.x and earlier, allows remote attackers to read process heap memory via unspecified vectors. | ||
| CVE-2015-5154 | — | < 4.0.3_21548_18-29.1 | 4.0.3_21548_18-29.1 | Aug 12, 2015 | Heap-based buffer overflow in the IDE subsystem in QEMU, as used in Xen 4.5.x and earlier, when the container has a CDROM drive enabled, allows local guest users to execute arbitrary code on the host via unspecified ATAPI commands. |
- CVE-2015-5165Aug 12, 2015affected < 4.0.3_21548_18-29.1fixed 4.0.3_21548_18-29.1
The C+ mode offload emulation in the RTL8139 network card device model in QEMU, as used in Xen 4.5.x and earlier, allows remote attackers to read process heap memory via unspecified vectors.
- CVE-2015-5154Aug 12, 2015affected < 4.0.3_21548_18-29.1fixed 4.0.3_21548_18-29.1
Heap-based buffer overflow in the IDE subsystem in QEMU, as used in Xen 4.5.x and earlier, when the container has a CDROM drive enabled, allows local guest users to execute arbitrary code on the host via unspecified ATAPI commands.