CVE-2015-5225

QEMU <2.4.0.1 - Buffer Overflow

Title source: llm
STIX 2.1

Description

Buffer overflow in the vnc_refresh_server_surface function in the VNC display driver in QEMU before 2.4.0.1 allows guest users to cause a denial of service (heap memory corruption and process crash) or possibly execute arbitrary code on the host via unspecified vectors, related to refreshing the server display surface.

References (12)

Core 12
Core References
Patch, Vendor Advisory mailing-list x_refsource_mlist
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg05832.html
Various Sources mailing-list x_refsource_mlist
https://lists.gnu.org/archive/html/qemu-devel/2015-08/msg02495.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-1837.html
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165484.html
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2015/dsa-3348
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169039.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-1772.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1033547
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2015/08/21/6
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/76506
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166798.html
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201602-01

Scores

EPSS 0.0017
EPSS Percentile 37.4%

Details

CWE
CWE-119
Status published
Products (7)
fedoraproject/fedora 21
fedoraproject/fedora 22
fedoraproject/fedora 23
qemu/qemu < 2.4.0
redhat/openstack 5.0
redhat/openstack 6.0
redhat/openstack 7.0
Published Nov 06, 2015
Tracked Since Feb 18, 2026