FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

qemu -- denial of service vulnerability in e1000 NIC support

Affected packages
qemu < 2.4.0.1
qemu-devel < 2.4.0.1
qemu-sbruno < 2.5.50.g20151224
qemu-user-static < 2.5.50.g20151224

Details

VuXML ID 10bf8eed-b14d-11e5-9728-002590263bf5
Discovery 2015-09-04
Entry 2016-01-02

Prasad J Pandit, Red Hat Product Security Team, reports:

Qemu emulator built with the e1000 NIC emulation support is vulnerable to an infinite loop issue. It could occur while processing transmit descriptor data when sending a network packet.

A privileged user inside guest could use this flaw to crash the Qemu instance resulting in DoS.

[source]

References

CVE Name CVE-2015-6815
URL http://git.qemu.org/?p=qemu.git;a=commit;h=3a56af1fbc17ff453f6e90fb08ce0c0e6fd0b61b
URL http://www.openwall.com/lists/oss-security/2015/09/04/4
URL https://github.com/seanbruno/qemu-bsd-user/commit/b947ac2bf26479e710489739c465c8af336599e7

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.