VDB
GCVE-110-MAGEIA-2015-220
GCVE-110-MAGEIA-2015-220
Advisory Published
Updated qemu packages fix security vulnerability:
An out-of-bounds memory access flaw was found in the way QEMU's virtual
Floppy Disk Controller (FDC) handled FIFO buffer access while processing
certain FDC commands. A privileged guest user could use this flaw to crash
the guest or, potentially, execute arbitrary code on the host with the
privileges of the host's QEMU process corresponding to the guest
(CVE-2015-3456).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | qemu | 0 (affected), 1.6.2-1.10.mga4 (unaffected) | — |
Aliases
References
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.