USN-2692-1
- Source
- https://ubuntu.com/security/notices/USN-2692-1
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-2692-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/USN-2692-1
- Related
- Published
- 2015-07-28T16:29:35.194660Z
- Modified
- 2015-07-28T16:29:35.194660Z
- Summary
- qemu vulnerabilities
- Details
-
Matt Tait discovered that QEMU incorrectly handled PIT emulation. In a non-default configuration, a malicious guest could use this issue to cause a denial of service, or possibly execute arbitrary code on the host as the user running the QEMU process. In the default installation, when QEMU is used with libvirt, attackers would be isolated by the libvirt AppArmor profile. (CVE-2015-3214)
Kevin Wolf discovered that QEMU incorrectly handled processing ATAPI commands. A malicious guest could use this issue to cause a denial of service, or possibly execute arbitrary code on the host as the user running the QEMU process. In the default installation, when QEMU is used with libvirt, attackers would be isolated by the libvirt AppArmor profile. (CVE-2015-5154)
Zhu Donghai discovered that QEMU incorrectly handled the SCSI driver. A malicious guest could use this issue to cause a denial of service, or possibly execute arbitrary code on the host as the user running the QEMU process. In the default installation, when QEMU is used with libvirt, attackers would be isolated by the libvirt AppArmor profile. This issue only affected Ubuntu 15.04. (CVE-2015-5158)
- References
Affected packages
Ubuntu:14.04:LTS / qemu
Package
- Name
- qemu
- Purl
- pkg:deb/ubuntu/qemu?arch=src?distro=trusty
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.0.0+dfsg-2ubuntu1.15
Affected versions
1.*
2.*
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-common"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-guest-agent"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-guest-agent-dbgsym"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-keymaps"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-kvm"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-system"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-system-aarch64"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-system-arm"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-system-arm-dbgsym"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-system-common"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-system-common-dbgsym"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-system-mips"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-system-mips-dbgsym"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-system-misc"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-system-misc-dbgsym"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-system-ppc"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-system-ppc-dbgsym"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-system-sparc"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-system-sparc-dbgsym"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-system-x86"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-system-x86-dbgsym"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-user"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-user-dbgsym"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-user-static"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-user-static-dbgsym"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-utils"
},
{
"binary_version": "2.0.0+dfsg-2ubuntu1.15",
"binary_name": "qemu-utils-dbgsym"
}
]
}