[Bug 201064] emulators/qemu: Heap overflow in QEMU PCNET controller, allowing guest->host escape (CVE-2015-3209)
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Tue Jun 23 00:19:39 UTC 2015
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=201064
Bug ID: 201064
Summary: emulators/qemu: Heap overflow in QEMU PCNET
controller, allowing guest->host escape
(CVE-2015-3209)
Product: Ports & Packages
Version: Latest
Hardware: Any
URL: http://xenbits.xen.org/xsa/advisory-135.html
OS: Any
Status: New
Keywords: needs-patch, needs-qa, security
Severity: Affects Many People
Priority: ---
Component: Individual Port(s)
Assignee: nox at FreeBSD.org
Reporter: koobs at FreeBSD.org
CC: ports-secteam at FreeBSD.org, sbruno at FreeBSD.org
Assignee: nox at FreeBSD.org
Flags: maintainer-feedback?(nox at FreeBSD.org),
merge-quarterly?
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3209
A guest which has access to an emulated PCNET network device
(e.g. with "model=pcnet" in their VIF configuration) can exploit this
vulnerability to take over the qemu process elevating its privilege to
that of the qemu process.
Check if it applies to
emulators/qemu
emulators/qemu-devel
emulators/qemu-sbruno
emulators/qemu-user-static
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ports-bugs
mailing list