2.1

CVE-2014-3615

The VGA emulator in QEMU allows local guest users to read host memory by setting the display to a high resolution.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
QemuQemu Version <= 2.1.3
DebianDebian Linux Version7.0
RedhatEnterprise Linux Eus Version7.3
RedhatEnterprise Linux Eus Version7.4
RedhatEnterprise Linux Eus Version7.5
RedhatEnterprise Linux Eus Version7.6
RedhatEnterprise Linux Eus Version7.7
RedhatOpenstack Version5.0
   RedhatEnterprise Linux Version7.0
RedhatVirtualization Version3.0
   RedhatEnterprise Linux Version7.0
CanonicalUbuntu Linux Version10.04 SwEdition-
CanonicalUbuntu Linux Version12.04 SwEditionesm
CanonicalUbuntu Linux Version14.04 SwEditionesm
CanonicalUbuntu Linux Version14.10
OpensuseOpensuse Version13.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.45% 0.357
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

http://www.ubuntu.com/usn/USN-2409-1
Third Party Advisory
http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=ab9509cceabef28071e41bdfa073083859c949a7
http://git.qemu.org/?p=qemu.git%3Ba=commitdiff%3Bh=c1b886c45dc70f247300f549dce9833f3fa2def5
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00014.html
Third Party Advisory
Mailing List
http://rhn.redhat.com/errata/RHSA-2014-1669.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2014-1670.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2014-1941.html
Third Party Advisory
http://secunia.com/advisories/61829
Third Party Advisory
http://support.citrix.com/article/CTX200892
Third Party Advisory
http://www.debian.org/security/2014/dsa-3044
Third Party Advisory
http://www.securityfocus.com/bid/69654
Third Party Advisory
VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1139115
Patch
Third Party Advisory
Issue Tracking