CVE-2015-6815

LOW

Qemu < 2.4.0.1 - Infinite Loop

Title source: rule
STIX 2.1

Description

The process_tx_desc function in hw/net/e1000.c in QEMU before 2.4.0.1 does not properly process transmit descriptor data when sending a network packet, which allows attackers to cause a denial of service (infinite loop and guest crash) via unspecified vectors.

References (13)

Core 13
Core References
Mailing List, Patch, Third Party Advisory x_refsource_misc
http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00026.html
Mailing List, Patch, Third Party Advisory x_refsource_misc
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00005.html
Mailing List, Patch, Third Party Advisory x_refsource_misc
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00011.html
Third Party Advisory x_refsource_misc
http://www.ubuntu.com/usn/USN-2745-1
Mailing List, Third Party Advisory x_refsource_misc
http://www.openwall.com/lists/oss-security/2015/09/04/4
Mailing List, Third Party Advisory x_refsource_misc
http://www.openwall.com/lists/oss-security/2015/09/05/5
Issue Tracking, Patch, Third Party Advisory x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=1260076
Mailing List, Patch, Third Party Advisory x_refsource_confirm
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg01199.html
Mailing List, Patch, Third Party Advisory x_refsource_confirm
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg05832.html

Scores

CVSS v3 3.5
EPSS 0.0157
EPSS Percentile 81.6%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Details

CWE
CWE-835
Status published
Products (26)
arista/eos 4.12
arista/eos 4.13
arista/eos 4.14
arista/eos 4.15
canonical/ubuntu_linux 12.04
canonical/ubuntu_linux 14.04
canonical/ubuntu_linux 15.04
fedoraproject/fedora 21
fedoraproject/fedora 22
fedoraproject/fedora 23
... and 16 more
Published Jan 31, 2020
Tracked Since Feb 18, 2026