SUSE-SU-2015:1519-1

Advisory lineage Upstream: 2 Downstream: 0

Upstream

CVE-2015-3209 CVE-2015-4037

Published: 08 Jun 2015, 14:28

Last modified:04 Feb 2026, 04:36

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

08 Jun 2015, 14:28

Published

Vulnerability first disclosed

04 Feb 2026, 04:36

Last Modified

Vulnerability information updated

Description

Security update for qemu qemu was updated to fix two security issues and augments one non-security bug fix. The following vulnerabilities were fixed: * CVE-2015-3209: heap overflow in qemu pcnet controller allowing guest to host escape (XSA-135) (bsc#932770) * CVE-2015-4037: Avoid predictable directory name for smb config (bsc#932267) The fix for the following non-security bug was improved: * bsc#893892: Use improved upstream patch for display issue affecting installs of SLES 11 VMs on SLES 12

Affected Systems

suse•qemu&distro=SUSE Linux Enterprise Desktop 12
< 2.0.2-48.4.1
suse•qemu&distro=SUSE Linux Enterprise Server 12
< 2.0.2-48.4.1
suse•qemu&distro=SUSE Linux Enterprise Server for SAP Applications 12
< 2.0.2-48.4.1

SUSE-SU-2015:1519-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (6)