CVE-2015-7512
published 2016-01-08CVE-2015-7512: Buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU, when a guest NIC has a larger MTU, allows remote attackers to cause a denial of…
critical9CVSS 3.1
AVNACHPRNUINSCCHIHAH
Buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU, when a guest NIC has a larger MTU, allows remote attackers to cause a denial of service (guest OS crash) or execute arbitrary code via a large packet.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | qemu | < qemu 1:2.5+dfsg-1 (bookworm) | qemu 1:2.5+dfsg-1 (bookworm) |
| oracle | linux | — | — |
| qemu | qemu | <= 2.4.1 | — |
| qemu | qemu | — | — |
| qemu | qemu | >= 0 < 1:2.5+dfsg-1 | 1:2.5+dfsg-1 |
| qemu | qemu | >= 0 < 1:2.5+dfsg-1 | 1:2.5+dfsg-1 |
| qemu | qemu | >= 0 < 1:2.5+dfsg-1 | 1:2.5+dfsg-1 |
| qemu | qemu | >= 0 < 1:2.5+dfsg-1 | 1:2.5+dfsg-1 |
| qemu | qemu | >= 0 < 2.0.0+dfsg-2ubuntu1.21 | 2.0.0+dfsg-2ubuntu1.21 |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_eus | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_workstation | — | — |
| redhat | openstack | — | — |
| redhat | virtualization | — | — |
CVSS provenance
nvdv3.19.0CRITICALCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
osv9.0CRITICAL