Back to search
CVE-2015-6855
Published: Nov 6, 2015
Modified: Aug 6, 2024
PUBLISHED
Description
hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a denial of service or possibly have unspecified other impact via certain IDE commands, as demonstrated by a WIN_READ_NATIVE_MAX command to an empty drive, which triggers a divide-by-zero error and instance crash.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
DSA-3361
vendor-advisory
x_refsource_DEBIAN
76691
vdb-entry
x_refsource_BID
FEDORA-2015-16369
vendor-advisory
x_refsource_FEDORA
FEDORA-2015-16370
vendor-advisory
x_refsource_FEDORA
FEDORA-2015-d6ea74993a
vendor-advisory
x_refsource_FEDORA
[oss-security] 20150910 Re: CVE request Qemu: ide: divide by zero issue
mailing-list
x_refsource_MLIST
SUSE-SU-2015:1782
vendor-advisory
x_refsource_SUSE
[oss-security] 20150910 CVE request Qemu: ide: divide by zero issue
mailing-list
x_refsource_MLIST
FEDORA-2015-16368
vendor-advisory
x_refsource_FEDORA
DSA-3362
vendor-advisory
x_refsource_DEBIAN
USN-2745-1
vendor-advisory
x_refsource_UBUNTU
FEDORA-2015-8dc71ade88
vendor-advisory
x_refsource_FEDORA
[Qemu-devel] 20150907 [PATCH] ide: fix ATAPI command permissions
mailing-list
x_refsource_MLIST
FEDORA-2015-4896530727
vendor-advisory
x_refsource_FEDORA
GLSA-201602-01
vendor-advisory
x_refsource_GENTOO
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now