NVD

Id
28805  
Name
CVE-2015-8743  
Description
QEMU (aka Quick Emulator) built with the NE2000 device emulation support is vulnerable to an OOB r/w access issue. It could occur while performing "ioport" r/w operations. A privileged (CAP_SYS_RAWIO) user/process could use this flaw to leak or corrupt QEMU memory bytes.  
Reject
 
CVSS Version
2  
CVSS Score
3.6  
Severity
Low  
CVSS Base Score
3.6  
CVSS Impact Subscore
4.9  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:P/I:P/A:N)  
Pub Date
2017-01-19  
Published
2016-12-29  
Modified Date
2016-12-30  
Seq
2015-8743  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
151668 28805 CVE-2015-8743 [oss-security] 20160104 CVE request Qemu: net: ne2000: OOB r/w in ioport operations  View
151669 28805 CVE-2015-8743 [oss-security] 20160104 Re: CVE request Qemu: net: ne2000: OOB r/w in ioport operations  View
151670 28805 CVE-2015-8743 79820  View
151671 28805 CVE-2015-8743 https://bugzilla.redhat.com/show_bug.cgi?id=1264929  View
151672 28805 CVE-2015-8743 [qemu-devel] 20160104 Re: [PATCH v3] net: ne2000: fix bounds check in ioport operations  View

Related JVN