CVE-2014-7815

Description

The set_pixel_format function in ui/vnc.c in QEMU allows remote attackers to cause a denial of service (crash) via a small bytes_per_pixel value.

CVSS Metrics

• v2.0•MEDIUM•Score: 5AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS Trends

Current EPSS score: 3.85%• Percentile: 88%

Techniques & Countermeasures

• CWE-20•Improper Input Validation

  The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Affected Systems

• canonical•ubuntu_linux

  10.04 | 12.04 | 14.04 | 14.10

• debian•debian_linux

  7.0

• qemu•qemu

  ≤ 2.1.3

• redhat•enterprise_linux_desktop

  7.0

• redhat•enterprise_linux_eus

  7.3 | 7.4 | 7.5 | 7.6 | 7.7

• redhat•enterprise_linux_server

  7.0

• redhat•enterprise_linux_server_aus

  7.3 | 7.4 | 7.6 | 7.7

• redhat•enterprise_linux_workstation

  7.0

• redhat•virtualization

  3.0

• suse•linux_enterprise_desktop

  12

• suse•linux_enterprise_server

  12

References (12)

• http://secunia.com/advisories/61484
• http://rhn.redhat.com/errata/RHSA-2015-0624.html
• http://secunia.com/advisories/62144
• https://bugzilla.redhat.com/show_bug.cgi?id=1157641
• http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00019.html
• http://secunia.com/advisories/62143
• http://rhn.redhat.com/errata/RHSA-2015-0349.html
• http://www.debian.org/security/2014/dsa-3067
• http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=e6908bfe8e07f2b452e78e677da1b45b1c0f6829
• http://support.citrix.com/article/CTX200892
• http://www.ubuntu.com/usn/USN-2409-1
• http://www.debian.org/security/2014/dsa-3066