CVE-2015-6815

CWE-8358 documents8 sources

Severity

3.5LOW

EPSS

1.6%

top 18.46%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Qemu Qemu Arista EOS Canonical Ubuntu Linux +8 more

Timeline

PublishedJan 31

Latest updateMay 24

Description

The process_tx_desc function in hw/net/e1000.c in QEMU before 2.4.0.1 does not properly process transmit descriptor data when sending a network packet, which allows attackers to cause a denial of service (infinite loop and guest crash) via unspecified vectors.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:LExploitability: 2.1 | Impact: 1.4

Affected Packages10 packages

▶NVDqemu/qemu< 2.4.0.1

▶Debianqemu< 1:2.4+dfsg-2+3

▶CVEListV5qemu/qemubefore 2.4.0.1

▶NVDxen/xen4.4.3, 4.5.1+1

▶NVDarista/eos4 versions+3

Also affects: Fedora 21, 22, 23, Ubuntu Linux 12.04, 14.04, 15.04, Enterprise Linux 5.0, 6.0, 7.0

Patches

Patch: lists.opensuse.org ↗Patch: lists.opensuse.org ↗Patch: lists.opensuse.org ↗

🔴Vulnerability Details

GHSA

GHSA-m4j6-cfvh-8j5q: The process_tx_desc function in hw/net/e1000↗2022-05-24

▶

CVEList

CVE-2015-6815: The process_tx_desc function in hw/net/e1000↗2020-01-31

▶

OSV

CVE-2015-6815: The process_tx_desc function in hw/net/e1000↗2020-01-31

▶

📋Vendor Advisories

Ubuntu

QEMU vulnerabilities↗2015-09-24

▶

Red Hat

qemu: net: e1000: infinite loop issue↗2015-09-05

▶

Debian

CVE-2015-6815: qemu - The process_tx_desc function in hw/net/e1000.c in QEMU before 2.4.0.1 does not p...↗2015

▶

💬Community

Bugzilla

CVE-2015-6815 qemu: net: e1000: infinite loop issue↗2015-09-04

▶