CVE-2012-3515: Input Validation

First published: Fri Nov 23 2012(Updated: )

Qemu, as used in Xen 4.0, 4.1 and possibly other products, when emulating certain devices with a virtual console backend, allows local OS guest users to gain privileges via a crafted escape VT100 sequence that triggers the overwrite of a "device model's address space."

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
QEMU qemu	<1.2.0
Xen Xen	=4.0.0
Xen Xen	=4.1.0
openSUSE openSUSE	=11.4
openSUSE openSUSE	=12.1
openSUSE openSUSE	=12.2
SUSE Linux Enterprise Desktop	=10-sp4
SUSE Linux Enterprise Desktop	=11-sp2
SUSE Linux Enterprise Server	=10-sp2
SUSE Linux Enterprise Server	=10-sp3
SUSE Linux Enterprise Server	=10-sp4
SUSE Linux Enterprise Server	=11-sp1
SUSE Linux Enterprise Server	=11-sp2
Suse Linux Enterprise Server	=11-sp2
SUSE Linux Enterprise Software Development Kit	=10-sp4
SUSE Linux Enterprise Software Development Kit	=11-sp2
Redhat Virtualization	=3.0
Redhat Enterprise Linux	=6.0
Redhat Virtualization	=5.0
Redhat Virtualization	=6.0
Redhat Enterprise Linux Desktop	=5.0
Redhat Enterprise Linux Desktop	=6.0
Redhat Enterprise Linux Eus	=6.3
Redhat Enterprise Linux Server	=5.0
Redhat Enterprise Linux Server	=6.0
Redhat Enterprise Linux Workstation	=5.0
Redhat Enterprise Linux Workstation	=6.0
Debian Debian Linux	=6.0
Debian Debian Linux	=7.0
Canonical Ubuntu Linux	=10.04
Canonical Ubuntu Linux	=11.04
Canonical Ubuntu Linux	=11.10
Canonical Ubuntu Linux	=12.04

Never miss a vulnerability like this again

Reference Links

agent/type
agent/last-modified-date
agent/first-publish-date
agent/weakness
agent/severity
agent/references
agent/author
agent/softwarecombine
agent/tags
agent/description
agent/event
collector/nvd-index
agent/software-canonical-lookup-request
vendor/qemu
canonical/qemu qemu
vendor/xen
canonical/xen xen
version/xen xen/4.0.0
version/xen xen/4.1.0
vendor/opensuse
canonical/opensuse opensuse
version/opensuse opensuse/11.4
version/opensuse opensuse/12.1
version/opensuse opensuse/12.2
vendor/suse
canonical/suse linux enterprise desktop
version/suse linux enterprise desktop/10-sp4
version/suse linux enterprise desktop/11-sp2
canonical/suse linux enterprise server
version/suse linux enterprise server/10-sp2
version/suse linux enterprise server/10-sp3
version/suse linux enterprise server/10-sp4
version/suse linux enterprise server/11-sp1
version/suse linux enterprise server/11-sp2
canonical/suse linux enterprise software development kit
version/suse linux enterprise software development kit/10-sp4
version/suse linux enterprise software development kit/11-sp2
vendor/redhat
canonical/redhat virtualization
version/redhat virtualization/3.0
canonical/redhat enterprise linux
version/redhat enterprise linux/6.0
version/redhat virtualization/5.0
version/redhat virtualization/6.0
canonical/redhat enterprise linux desktop
version/redhat enterprise linux desktop/5.0
version/redhat enterprise linux desktop/6.0
canonical/redhat enterprise linux eus
version/redhat enterprise linux eus/6.3
canonical/redhat enterprise linux server
version/redhat enterprise linux server/5.0
version/redhat enterprise linux server/6.0
canonical/redhat enterprise linux workstation
version/redhat enterprise linux workstation/5.0
version/redhat enterprise linux workstation/6.0
vendor/debian
canonical/debian debian linux
version/debian debian linux/6.0
version/debian debian linux/7.0
vendor/canonical
canonical/canonical ubuntu linux
version/canonical ubuntu linux/10.04
version/canonical ubuntu linux/11.04
version/canonical ubuntu linux/11.10
version/canonical ubuntu linux/12.04

CVE-2012-3515: Input Validation

Never miss a vulnerability like this again

Reference Links

Company

Resources

Contact