hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a denial of service or possibly have unspecified other impact via certain IDE commands, as demonstrated by a WIN_READ_NATIVE_MAX command to an empty drive, which triggers a divide-by-zero error and instance crash.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
|
Configuration 6 (hide)
|
History
15 Dec 2021, 17:05
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
References | (MISC) https://www.arista.com/en/support/advisories-notices/security-advisories/1188-security-advisory-14 - Third Party Advisory | |
CPE | cpe:2.3:o:arista:eos:-:*:*:*:*:*:*:* |
17 Nov 2021, 22:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
10 Nov 2021, 01:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
05 Nov 2021, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2015-11-06 21:59
Updated : 2023-12-10 11:46
NVD link : CVE-2015-6855
Mitre link : CVE-2015-6855
CVE.ORG link : CVE-2015-6855
JSON object : View
Products Affected
qemu
- qemu
suse
- linux_enterprise_server
- linux_enterprise_desktop
arista
- eos
debian
- debian_linux
canonical
- ubuntu_linux
fedoraproject
- fedora
CWE
CWE-369
Divide By Zero