CVE-2015-4037

QEMU < 2.3.0 - Denial of Service via Predictable Temporary File Creation

Title source: llm
STIX 2.1

Description

The slirp_smb function in net/slirp.c in QEMU 2.3.0 and earlier creates temporary files with predictable names, which allows local users to cause a denial of service (instantiation failure) by creating /tmp/qemu-smb.*-* files before the program.

References (14)

Core 14
Core References
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2630-1
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2015/05/23/4
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160414.html
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160058.html
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2015/05/16/5
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2015/dsa-3284
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1032547
Mailing List vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2015-11/msg00063.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/74809
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1222892
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2015/05/13/7
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2015/dsa-3285

Scores

EPSS 0.0010
EPSS Percentile 26.4%

Details

CWE
CWE-17
Status published
Products (1)
qemu/qemu < 2.3.0
Published Aug 26, 2015
Tracked Since Feb 18, 2026