CVE-2015-6815low
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
The process_tx_desc function in hw/net/e1000.c in QEMU before 2.4.0.1 does not properly process transmit descriptor data when sending a network packet, which allows attackers to cause a denial of service (infinite loop and guest crash) via unspecified vectors.
References
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00011.html
http://www.openwall.com/lists/oss-security/2015/09/04/4
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg01199.html
http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00026.html
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00005.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168077.html
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg05832.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168646.html
http://www.ubuntu.com/usn/USN-2745-1
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168671.html
http://www.openwall.com/lists/oss-security/2015/09/05/5
https://bugzilla.redhat.com/show_bug.cgi?id=1260076
https://www.arista.com/en/support/advisories-notices/security-advisories/1188-security-advisory-14
Details
Source: MITRE
Published: 2020-01-31
Updated: 2021-11-17
Type: CWE-835
Risk Information
CVSS v2
Base Score: 2.7
Vector: AV:A/AC:L/Au:S/C:N/I:N/A:P
Impact Score: 2.9
Exploitability Score: 5.1
Severity: LOW
CVSS v3
Base Score: 3.5
Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Impact Score: 1.4
Exploitability Score: 2.1
Severity: LOW
Vulnerable Software
Configuration 1
OR
Configuration 2
OR
cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*
Configuration 3
OR
cpe:2.3:o:novell:suse_linux_enterprise_debuginfo:11.0:sp3:*:*:*:*:*:*
cpe:2.3:o:novell:suse_linux_enterprise_debuginfo:11.0:sp4:*:*:*:*:*:*
cpe:2.3:o:novell:suse_linux_enterprise_desktop:11.0:sp3:*:*:*:*:*:*
cpe:2.3:o:novell:suse_linux_enterprise_desktop:11.0:sp4:*:*:*:*:*:*
cpe:2.3:o:novell:suse_linux_enterprise_desktop:12.0:*:*:*:*:*:*:*
cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp3:*:*:*:*:*:*
cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp4:*:*:*:*:*:*
cpe:2.3:o:novell:suse_linux_enterprise_server:12.0:*:*:*:*:*:*:*
cpe:2.3:o:novell:suse_linux_enterprise_software_development_kit:11.0:sp3:*:*:*:*:*:*
cpe:2.3:o:novell:suse_linux_enterprise_software_development_kit:11.0:sp4:*:*:*:*:*:*
cpe:2.3:o:novell:suse_linux_enterprise_software_development_kit:12.0:*:*:*:*:*:*:*
Configuration 4
OR
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
Configuration 5
OR
cpe:2.3:a:redhat:openstack:5.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:openstack:6.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*
Configuration 6
OR
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 135559 | EulerOS 2.0 SP3 : qemu-kvm (EulerOS-SA-2020-1430) | Nessus | Huawei Local Security Checks | critical |
| 94758 | SUSE SLES12 Security Update : qemu (SUSE-SU-2016:2781-1) | Nessus | SuSE Local Security Checks | high |
| 94283 | SUSE SLES11 Security Update : kvm (SUSE-SU-2016:2628-1) | Nessus | SuSE Local Security Checks | high |
| 90478 | openSUSE Security Update : xen (openSUSE-2016-439) | Nessus | SuSE Local Security Checks | critical |
| 89456 | Fedora 22 : xen-4.5.1-9.fc22 (2015-efc1d7ba5e) | Nessus | Fedora Local Security Checks | high |
| 89186 | Fedora 23 : xen-4.5.1-9.fc23 (2015-28cfce6702) | Nessus | Fedora Local Security Checks | high |
| 89126 | Fedora 21 : xen-4.4.3-4.fc21 (2015-015aec3bf2) | Nessus | Fedora Local Security Checks | high |
| 88587 | GLSA-201602-01 : QEMU: Multiple vulnerabilities (Venom) | Nessus | Gentoo Local Security Checks | critical |
| 87685 | FreeBSD : qemu -- denial of service vulnerability in e1000 NIC support (10bf8eed-b14d-11e5-9728-002590263bf5) | Nessus | FreeBSD Local Security Checks | low |
| 87588 | SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2015:2324-1) | Nessus | SuSE Local Security Checks | high |
| 87393 | openSUSE Security Update : xen (openSUSE-2015-892) | Nessus | SuSE Local Security Checks | medium |
| 86909 | openSUSE Security Update : xen (openSUSE-2015-750) | Nessus | SuSE Local Security Checks | medium |
| 86865 | SUSE SLES11 Security Update : xen (SUSE-SU-2015:1952-1) | Nessus | SuSE Local Security Checks | medium |
| 86863 | openSUSE Security Update : xen (openSUSE-2015-729) | Nessus | SuSE Local Security Checks | medium |
| 86756 | SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2015:1908-1) | Nessus | SuSE Local Security Checks | medium |
| 86753 | SUSE SLED11 / SLES11 Security Update : xen (SUSE-SU-2015:1894-1) | Nessus | SuSE Local Security Checks | medium |
| 86704 | SUSE SLED11 / SLES11 Security Update : xen (SUSE-SU-2015:1853-1) | Nessus | SuSE Local Security Checks | medium |
| 86333 | Fedora 22 : qemu-2.3.1-5.fc22 (2015-16369) | Nessus | Fedora Local Security Checks | critical |
| 86332 | Fedora 21 : qemu-2.1.3-11.fc21 (2015-16368) | Nessus | Fedora Local Security Checks | critical |
| 86146 | Ubuntu 12.04 LTS / 14.04 LTS / 15.04 : qemu, qemu-kvm vulnerabilities (USN-2745-1) | Nessus | Ubuntu Local Security Checks | medium |
| 86112 | Fedora 23 : qemu-2.4.0-4.fc23 (2015-16370) | Nessus | Fedora Local Security Checks | critical |
| 86024 | Debian DSA-3362-1 : qemu-kvm - security update | Nessus | Debian Local Security Checks | medium |
| 86023 | Debian DSA-3361-1 : qemu - security update | Nessus | Debian Local Security Checks | medium |