MGASA-2015-0220

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2015-0220.html

Import Source

https://advisories.mageia.org/MGASA-2015-0220.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2015-0220

Related

CVE-2015-3456

Published

2015-05-13T15:54:07Z

Modified

2015-05-13T15:43:49Z

Summary

Updated qemu packages fix CVE-2015-3456

Details

Updated qemu packages fix security vulnerability:

An out-of-bounds memory access flaw was found in the way QEMU's virtual Floppy Disk Controller (FDC) handled FIFO buffer access while processing certain FDC commands. A privileged guest user could use this flaw to crash the guest or, potentially, execute arbitrary code on the host with the privileges of the host's QEMU process corresponding to the guest (CVE-2015-3456).

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:4 / qemu

Package

Name: qemu
Purl: pkg:rpm/mageia/qemu?distro=mageia-4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.6.2-1.10.mga4

Ecosystem specific

{
    "section": "core"
}