The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
17 Nov 2021, 22:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
10 Nov 2021, 01:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
05 Nov 2021, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2015-05-13 18:59
Updated : 2024-02-04 18:53
NVD link : CVE-2015-3456
Mitre link : CVE-2015-3456
CVE.ORG link : CVE-2015-3456
JSON object : View
Products Affected
redhat
- enterprise_linux
- enterprise_virtualization
- openstack
xen
- xen
qemu
- qemu
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer