← Back

CVE-2015-6815

nvd nist
Published: Jan 31, 2020Modified: Nov 21, 2024

JSON object

Loading...
3.5
Vector
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Exploitability: 2.1 / Impact: 1.4
Source: NVD

Description

The process_tx_desc function in hw/net/e1000.c in QEMU before 2.4.0.1 does not properly process transmit descriptor data when sending a network packet, which allows attackers to cause a denial of service (infinite loop and guest crash) via unspecified vectors.

Affected (30)

Show all products
Qemu: Qemu · Fedoraproject: Fedora · Novell: Suse Linux Enterprise Debuginfo, Suse Linux Enterprise Desktop, Suse Linux Enterprise Server, Suse Linux Enterprise Software Development Kit · Canonical: Ubuntu Linux · Redhat: Enterprise Linux, Openstack · Xen: Xen · Arista: Eos
Qemu
1 product
Qemu
Fedoraproject
1 product
Fedora
Novell
4 products
Suse Linux Enterprise Debuginfo
Suse Linux Enterprise Desktop
Suse Linux Enterprise Server
Suse Linux Enterprise Software Development Kit
Canonical
1 product
Ubuntu Linux
Redhat
2 products
Enterprise Linux
Openstack
Xen
1 product
Xen
Arista
1 product
Eos
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Qemu
Before 2.4.0.1
Configuration B
3 vulnerable
Vulnerable SoftwareAffected Versions
Fedoraproject
Fedora
Version 21
Fedora
Version 22
Fedora
Version 23
Configuration C
11 vulnerable
Vulnerable SoftwareAffected Versions
Novell
Suse Linux Enterprise Debuginfo
Version 11.0 sp3
Suse Linux Enterprise Debuginfo
Version 11.0 sp4
Novell
Suse Linux Enterprise Desktop
Version 11.0 sp3
Suse Linux Enterprise Desktop
Version 11.0 sp4
Suse Linux Enterprise Desktop
Version 12.0
Novell
Suse Linux Enterprise Server
Version 11.0 sp3
Suse Linux Enterprise Server
Version 11.0 sp4
Suse Linux Enterprise Server
Version 12.0
Novell
Suse Linux Enterprise Software Development Kit
Version 11.0 sp3
Suse Linux Enterprise Software Development Kit
Version 11.0 sp4
Suse Linux Enterprise Software Development Kit
Version 12.0
Configuration D
3 vulnerable
Vulnerable SoftwareAffected Versions
Canonical
Ubuntu Linux
Version 12.04
Ubuntu Linux
Version 14.04
Ubuntu Linux
Version 15.04
Configuration E
6 vulnerable
Vulnerable SoftwareAffected Versions
Redhat
Enterprise Linux
Version 5.0
Enterprise Linux
Version 6.0
Enterprise Linux
Version 7.0
Redhat
Openstack
Version 5.0
Openstack
Version 6.0
Openstack
Version 7.0
Configuration F
2 vulnerable
Vulnerable SoftwareAffected Versions
Xen
Xen
Version 4.4.3
Xen
Version 4.5.1
Configuration G
4 vulnerable
Vulnerable SoftwareAffected Versions
Arista
Eos
Version 4.12
Eos
Version 4.13
Eos
Version 4.14
Eos
Version 4.15

Related CWEs

CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.

References (26)

Source: secalert@redhat.com
Mailing ListThird Party Advisory
Source: secalert@redhat.com
Mailing ListThird Party Advisory
Source: secalert@redhat.com
Mailing ListThird Party Advisory
Source: secalert@redhat.com
Mailing ListPatchThird Party Advisory
Source: secalert@redhat.com
Mailing ListPatchThird Party Advisory
Source: secalert@redhat.com
Mailing ListPatchThird Party Advisory
Source: secalert@redhat.com
Mailing ListThird Party Advisory
Source: secalert@redhat.com
Mailing ListThird Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Issue TrackingPatchThird Party Advisory
Source: secalert@redhat.com
Mailing ListPatchThird Party Advisory
Source: secalert@redhat.com
Mailing ListPatchThird Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Issue TrackingPatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory

Timeline

No history available yet.