SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   QEMU Vendors:   QEMU.org
QEMU VNC Heap Overflow Lets Local Guest System Users Deny Service or Gain Privileges on the Host System
SecurityTracker Alert ID:  1033547
SecurityTracker URL:  http://securitytracker.com/id/1033547
CVE Reference:   CVE-2015-5225   (Links to External Site)
Date:  Sep 14 2015
Impact:   Denial of service via network, User access via local system
Fix Available:  Yes  Vendor Confirmed:  Yes  

Description:   A vulnerabilitiy was reported in QEMU. A local user on the guest system can cause denial of service conditions on the host system or potentially gain privileges on the host system.

A privileged local user on the guest system can trigger a heap overflow in the vnc_refresh_server_surface() function to cause the QEMU process on the host system to crash or to potentially execute arbitrary code on the host system.

Mr Qinghao Tang from QIHU 360 Inc. and Mr Zuozhi from Alibaba Inc. reported this vulnerability.

Impact:   A privileged local user on the guest system can cause denial of service conditions on the host system.

A privileged local user on the guest system may be able to execute arbitrary code and gain privileges on the host system.

Solution:   The vendor has issued a source code fix [in August 2015], available at:

http://git.qemu.org/?p=qemu.git;a=commit;h=eb8934b0418b3b1d125edddc4fc334a54334a49b

Vendor URL:  wiki.qemu.org/Main_Page (Links to External Site)
Cause:   Access control error
Underlying OS:  Linux (Any), UNIX (Any), Windows (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Sep 14 2015 (Red Hat Issues Fix) QEMU VNC Heap Overflow Lets Local Guest System Users Deny Service or Gain Privileges on the Host System
Red Hat has issued a fix for Red Hat Enterprise Linux 7.
Sep 24 2015 (Red Hat Issues Fix for Red Hat Enterprise Virtualization) QEMU VNC Heap Overflow Lets Local Guest System Users Deny Service or Gain Privileges on the Host System
Red Hat has issued a fix for Red Hat Enterprise Virtualization for Red Hat Enterprise Linux.



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC