First published: Thu Jan 23 2020(Updated: )
Integer overflow in the VNC display driver in QEMU before 2.1.0 allows attachers to cause a denial of service (process crash) via a CLIENT_CUT_TEXT message, which triggers an infinite loop.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
QEMU qemu | <2.1.0 | |
Fedoraproject Fedora | =21 | |
Fedoraproject Fedora | =22 | |
Fedoraproject Fedora | =23 | |
Canonical Ubuntu Linux | =12.04 | |
Canonical Ubuntu Linux | =14.04 | |
Canonical Ubuntu Linux | =15.04 | |
SUSE Linux Enterprise Debuginfo | =11-sp3 | |
SUSE Linux Enterprise Debuginfo | =11-sp4 | |
SUSE Linux Enterprise Desktop | =11-sp3 | |
SUSE Linux Enterprise Desktop | =11-sp4 | |
SUSE Linux Enterprise Desktop | =12 | |
SUSE Linux Enterprise Server | =11-sp3 | |
SUSE Linux Enterprise Server | =11-sp4 | |
SUSE Linux Enterprise Server | =12 | |
SUSE Linux Enterprise Software Development Kit | =11-sp3 | |
SUSE Linux Enterprise Software Development Kit | =11-sp4 | |
SUSE Linux Enterprise Software Development Kit | =12 | |
Arista EOS | =4.12 | |
Arista EOS | =4.13 | |
Arista EOS | =4.14 | |
Arista EOS | =4.15 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of this vulnerability is CVE-2015-5239.
CVE-2015-5239 has a severity level of medium with a CVSS score of 6.5.
QEMU versions before 2.1.0 are affected by CVE-2015-5239.
An attacker can exploit CVE-2015-5239 by sending a crafted CLIENT_CUT_TEXT message, which triggers an infinite loop and leads to a denial of service (process crash).
Yes, you can find more information about CVE-2015-5239 at the following references: [link1](http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168077.html), [link2](http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168646.html), [link3](http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168671.html).