Back to search
CVE-2015-5154
Published: Aug 12, 2015
Modified: Aug 6, 2024
PUBLISHED
Description
Heap-based buffer overflow in the IDE subsystem in QEMU, as used in Xen 4.5.x and earlier, when the container has a CDROM drive enabled, allows local guest users to execute arbitrary code on the host via unspecified ATAPI commands.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
76048
vdb-entry
x_refsource_BID
http://xenbits.xen.org/xsa/advisory-138.html
x_refsource_CONFIRM
SUSE-SU-2015:1643
vendor-advisory
x_refsource_SUSE
GLSA-201510-02
vendor-advisory
x_refsource_GENTOO
1033074
vdb-entry
x_refsource_SECTRACK
DSA-3348
vendor-advisory
x_refsource_DEBIAN
SUSE-SU-2015:1782
vendor-advisory
x_refsource_SUSE
RHSA-2015:1508
vendor-advisory
x_refsource_REDHAT
RHSA-2015:1507
vendor-advisory
x_refsource_REDHAT
FEDORA-2015-12714
vendor-advisory
x_refsource_FEDORA
RHSA-2015:1512
vendor-advisory
x_refsource_REDHAT
SUSE-SU-2015:1455
vendor-advisory
x_refsource_SUSE
SUSE-SU-2015:1299
vendor-advisory
x_refsource_SUSE
SUSE-SU-2015:1426
vendor-advisory
x_refsource_SUSE
FEDORA-2015-12657
vendor-advisory
x_refsource_FEDORA
SUSE-SU-2015:1421
vendor-advisory
x_refsource_SUSE
GLSA-201604-03
vendor-advisory
x_refsource_GENTOO
SUSE-SU-2015:1302
vendor-advisory
x_refsource_SUSE
SUSE-SU-2015:1409
vendor-advisory
x_refsource_SUSE
http://support.citrix.com/article/CTX201593
x_refsource_CONFIRM
FEDORA-2015-12679
vendor-advisory
x_refsource_FEDORA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now