CVE-2015-5745 — Classic Buffer Overflow in Qemu

CWE-120 — Classic Buffer Overflow CWE-122 — Heap-based Buffer Overflow10 documents8 sources

Severity

6.5MEDIUMNVD

EPSS

1.9%

top 16.61%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Qemu Arista EOS Fedoraproject Fedora

Timeline

PublishedJan 23

Latest updateMay 24

Description

Buffer overflow in the send_control_msg function in hw/char/virtio-serial-bus.c in QEMU before 2.4.0 allows guest users to cause a denial of service (QEMU process crash) via a crafted virtio control message.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages4 packages

▶NVDqemu/qemu< 2.4.0

▶Debianqemu/qemu< 1:2.4+dfsg-1a+3

▶CVEListV5qemu/qemubefore 2.4.0

▶NVDarista/eos4 versions+3

Also affects: Fedora 21, 22, 23

Patches

Patch: github.com ↗Patch: lists.gnu.org ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-w8v5-w883-3mh3: Buffer overflow in the send_control_msg function in hw/char/virtio-serial-bus↗2022-05-24

▶

CVEList

CVE-2015-5745: Buffer overflow in the send_control_msg function in hw/char/virtio-serial-bus↗2020-01-23

▶

OSV

CVE-2015-5745: Buffer overflow in the send_control_msg function in hw/char/virtio-serial-bus↗2020-01-23

▶

📋Vendor Advisories

Ubuntu

QEMU vulnerabilities↗2015-08-27

▶

Red Hat

kernel: qemu buffer overflow in virtio-serial↗2015-07-23

▶

Debian

CVE-2015-5745: qemu - Buffer overflow in the send_control_msg function in hw/char/virtio-serial-bus.c ...↗2015

▶

💬Community

Bugzilla

CVE-2015-5745 xen: kernel: qemu buffer overflow in virtio-serial [fedora-all]↗2015-08-07

▶

Bugzilla

CVE-2015-5745 qemu: kernel: qemu buffer overflow in virtio-serial [fedora-all]↗2015-08-06

▶

Bugzilla

CVE-2015-5745 kernel: qemu buffer overflow in virtio-serial↗2015-08-06

▶