Vulnerability-Lookup

CVE-2012-3515 (GCVE-0-2012-3515)

Vulnerability from cvelistv5 – Published: 2012-11-23 20:00 – Updated: 2024-08-06 20:05

Summary

Qemu, as used in Xen 4.0, 4.1 and possibly other products, when emulating certain devices with a virtual console backend, allows local OS guest users to gain privileges via a crafted escape VT100 sequence that triggers the overwrite of a "device model's address space."

Severity

No CVSS data available.

CWE

Assigner

redhat

References

41 references

URL	Tags
http://secunia.com/advisories/55082	third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/50528	third-party-advisoryx_refsource_SECUNIA
http://rhn.redhat.com/errata/RHSA-2012-1234.html	vendor-advisoryx_refsource_REDHAT
http://secunia.com/advisories/50530	third-party-advisoryx_refsource_SECUNIA
http://git.qemu.org/?p=qemu-stable-0.15.git%3Ba=log	x_refsource_CONFIRM
http://secunia.com/advisories/51413	third-party-advisoryx_refsource_SECUNIA
http://security.gentoo.org/glsa/glsa-201309-24.xml	vendor-advisoryx_refsource_GENTOO
http://secunia.com/advisories/50689	third-party-advisoryx_refsource_SECUNIA
http://www.debian.org/security/2012/dsa-2543	vendor-advisoryx_refsource_DEBIAN
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://secunia.com/advisories/50632	third-party-advisoryx_refsource_SECUNIA
http://rhn.redhat.com/errata/RHSA-2012-1325.html	vendor-advisoryx_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2012-1236.html	vendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://secunia.com/advisories/50913	third-party-advisoryx_refsource_SECUNIA
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://secunia.com/advisories/50472	third-party-advisoryx_refsource_SECUNIA
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://www.ubuntu.com/usn/USN-1590-1	vendor-advisoryx_refsource_UBUNTU
http://rhn.redhat.com/errata/RHSA-2012-1262.html	vendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-updates/2012-0…	vendor-advisoryx_refsource_SUSE
http://wiki.xen.org/wiki/Security_Announcements#X…	x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://www.securityfocus.com/bid/55413	vdb-entryx_refsource_BID
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
https://security.gentoo.org/glsa/201604-03	vendor-advisoryx_refsource_GENTOO
http://rhn.redhat.com/errata/RHSA-2012-1233.html	vendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://support.citrix.com/article/CTX134708	x_refsource_CONFIRM
http://www.debian.org/security/2012/dsa-2545	vendor-advisoryx_refsource_DEBIAN
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://lists.xen.org/archives/html/xen-announce/2…	mailing-listx_refsource_MLIST
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://rhn.redhat.com/errata/RHSA-2012-1235.html	vendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://www.openwall.com/lists/oss-security/2012/0…	mailing-listx_refsource_MLIST
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://secunia.com/advisories/50860	third-party-advisoryx_refsource_SECUNIA

Date Public

2012-09-05 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T20:05:12.755Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "55082",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/55082"
          },
          {
            "name": "50528",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/50528"
          },
          {
            "name": "RHSA-2012:1234",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2012-1234.html"
          },
          {
            "name": "50530",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/50530"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://git.qemu.org/?p=qemu-stable-0.15.git%3Ba=log"
          },
          {
            "name": "51413",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/51413"
          },
          {
            "name": "GLSA-201309-24",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-201309-24.xml"
          },
          {
            "name": "50689",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/50689"
          },
          {
            "name": "DSA-2543",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2012/dsa-2543"
          },
          {
            "name": "SUSE-SU-2012:1135",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00005.html"
          },
          {
            "name": "50632",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/50632"
          },
          {
            "name": "RHSA-2012:1325",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2012-1325.html"
          },
          {
            "name": "RHSA-2012:1236",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2012-1236.html"
          },
          {
            "name": "SUSE-SU-2012:1205",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00027.html"
          },
          {
            "name": "SUSE-SU-2012:1202",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00024.html"
          },
          {
            "name": "50913",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/50913"
          },
          {
            "name": "openSUSE-SU-2012:1572",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00017.html"
          },
          {
            "name": "50472",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/50472"
          },
          {
            "name": "openSUSE-SU-2012:1170",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00016.html"
          },
          {
            "name": "USN-1590-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-1590-1"
          },
          {
            "name": "RHSA-2012:1262",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2012-1262.html"
          },
          {
            "name": "openSUSE-SU-2012:1153",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2012-09/msg00051.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://wiki.xen.org/wiki/Security_Announcements#XSA-17_Qemu_VT100_emulation_vulnerability"
          },
          {
            "name": "SUSE-SU-2012:1203",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00026.html"
          },
          {
            "name": "55413",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/55413"
          },
          {
            "name": "SUSE-SU-2012:1162",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00012.html"
          },
          {
            "name": "openSUSE-SU-2012:1174",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00018.html"
          },
          {
            "name": "SUSE-SU-2012:1320",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00002.html"
          },
          {
            "name": "GLSA-201604-03",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201604-03"
          },
          {
            "name": "RHSA-2012:1233",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2012-1233.html"
          },
          {
            "name": "SUSE-SU-2012:1132",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00003.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://support.citrix.com/article/CTX134708"
          },
          {
            "name": "DSA-2545",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2012/dsa-2545"
          },
          {
            "name": "SUSE-SU-2012:1129",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00001.html"
          },
          {
            "name": "[Xen-announce] 20120905 Xen Security Advisory 17 (CVE-2012-3515) - Qemu VT100 emulation vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://lists.xen.org/archives/html/xen-announce/2012-09/msg00003.html"
          },
          {
            "name": "SUSE-SU-2012:1133",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00004.html"
          },
          {
            "name": "RHSA-2012:1235",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2012-1235.html"
          },
          {
            "name": "openSUSE-SU-2012:1573",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00018.html"
          },
          {
            "name": "[oss-security] 20120905 Xen Security Advisory 17 (CVE-2012-3515) - Qemu VT100 emulation  vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2012/09/05/10"
          },
          {
            "name": "openSUSE-SU-2012:1172",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00017.html"
          },
          {
            "name": "50860",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/50860"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2012-09-05T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Qemu, as used in Xen 4.0, 4.1 and possibly other products, when emulating certain devices with a virtual console backend, allows local OS guest users to gain privileges via a crafted escape VT100 sequence that triggers the overwrite of a \"device model\u0027s address space.\""
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-06-30T16:57:01.000Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "55082",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/55082"
        },
        {
          "name": "50528",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/50528"
        },
        {
          "name": "RHSA-2012:1234",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2012-1234.html"
        },
        {
          "name": "50530",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/50530"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://git.qemu.org/?p=qemu-stable-0.15.git%3Ba=log"
        },
        {
          "name": "51413",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/51413"
        },
        {
          "name": "GLSA-201309-24",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-201309-24.xml"
        },
        {
          "name": "50689",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/50689"
        },
        {
          "name": "DSA-2543",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2012/dsa-2543"
        },
        {
          "name": "SUSE-SU-2012:1135",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00005.html"
        },
        {
          "name": "50632",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/50632"
        },
        {
          "name": "RHSA-2012:1325",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2012-1325.html"
        },
        {
          "name": "RHSA-2012:1236",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2012-1236.html"
        },
        {
          "name": "SUSE-SU-2012:1205",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00027.html"
        },
        {
          "name": "SUSE-SU-2012:1202",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00024.html"
        },
        {
          "name": "50913",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/50913"
        },
        {
          "name": "openSUSE-SU-2012:1572",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00017.html"
        },
        {
          "name": "50472",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/50472"
        },
        {
          "name": "openSUSE-SU-2012:1170",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00016.html"
        },
        {
          "name": "USN-1590-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-1590-1"
        },
        {
          "name": "RHSA-2012:1262",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2012-1262.html"
        },
        {
          "name": "openSUSE-SU-2012:1153",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2012-09/msg00051.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://wiki.xen.org/wiki/Security_Announcements#XSA-17_Qemu_VT100_emulation_vulnerability"
        },
        {
          "name": "SUSE-SU-2012:1203",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00026.html"
        },
        {
          "name": "55413",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/55413"
        },
        {
          "name": "SUSE-SU-2012:1162",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00012.html"
        },
        {
          "name": "openSUSE-SU-2012:1174",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00018.html"
        },
        {
          "name": "SUSE-SU-2012:1320",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00002.html"
        },
        {
          "name": "GLSA-201604-03",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201604-03"
        },
        {
          "name": "RHSA-2012:1233",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2012-1233.html"
        },
        {
          "name": "SUSE-SU-2012:1132",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00003.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://support.citrix.com/article/CTX134708"
        },
        {
          "name": "DSA-2545",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2012/dsa-2545"
        },
        {
          "name": "SUSE-SU-2012:1129",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00001.html"
        },
        {
          "name": "[Xen-announce] 20120905 Xen Security Advisory 17 (CVE-2012-3515) - Qemu VT100 emulation vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://lists.xen.org/archives/html/xen-announce/2012-09/msg00003.html"
        },
        {
          "name": "SUSE-SU-2012:1133",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00004.html"
        },
        {
          "name": "RHSA-2012:1235",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2012-1235.html"
        },
        {
          "name": "openSUSE-SU-2012:1573",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00018.html"
        },
        {
          "name": "[oss-security] 20120905 Xen Security Advisory 17 (CVE-2012-3515) - Qemu VT100 emulation  vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2012/09/05/10"
        },
        {
          "name": "openSUSE-SU-2012:1172",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00017.html"
        },
        {
          "name": "50860",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/50860"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2012-3515",
    "datePublished": "2012-11-23T20:00:00.000Z",
    "dateReserved": "2012-06-14T00:00:00.000Z",
    "dateUpdated": "2024-08-06T20:05:12.755Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2012-3515",
      "date": "2026-05-27",
      "epss": "0.001",
      "percentile": "0.27285"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"1.2.0\", \"matchCriteriaId\": \"03FB8819-CA76-4C31-A901-6ACCB8325928\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:xen:xen:4.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"550223A9-B9F1-440A-8C25-9F0F76AF7301\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:xen:xen:4.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0D532B60-C8DD-4A2F-9D05-E574D23EB754\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DE554781-1EB9-446E-911F-6C11970C47F4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EBB2C482-D2A4-48B3-ACE7-E1DFDCC409B5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D806A17E-B8F9-466D-807D-3F1E77603DC8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_desktop:10:sp4:*:*:*:*:*:*\", \"matchCriteriaId\": \"F0545634-EC4A-48E8-AB3D-49802FB11758\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_desktop:11:sp2:*:*:*:*:*:*\", \"matchCriteriaId\": \"00720D8C-3FF3-4B1C-B74B-91F01A544399\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_server:10:sp2:*:*:*:*:*:*\", \"matchCriteriaId\": \"22A79A35-05DB-4B9F-AD3E-EA6F933CF10C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:ltss:*:*:*\", \"matchCriteriaId\": \"CED02712-1031-4206-AC4D-E68710F46EC9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:*:*:*:*\", \"matchCriteriaId\": \"A53FF936-C785-4CEF-BAD0-3C3EB90EE466\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:ltss:*:*:*\", \"matchCriteriaId\": \"67960FB9-13D1-4DEE-8158-31BF31BCBE6F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:*:-:*:*\", \"matchCriteriaId\": \"88D6E858-FD8F-4C55-B7D5-CEEDA2BBA898\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:*:vmware:*:*\", \"matchCriteriaId\": \"DB4D6749-81A1-41D7-BF4F-1C45A7F49A22\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp4:*:*:*:*:*:*\", \"matchCriteriaId\": \"436EF2ED-FDBB-4B64-8EC4-33C3E4253F06\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp2:*:*:*:*:*:*\", \"matchCriteriaId\": \"5AA37837-3083-4DC7-94F4-54FD5D7CB53C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:virtualization:3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D86166F9-BBF0-4650-8CCD-0F9C97104D21\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:virtualization:5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FCFEF451-4B77-4259-8000-B252E699A950\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:virtualization:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"37BA55FC-D350-4DEB-9802-40AF59C99E79\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"133AAFA7-AF42-4D7B-8822-AA2E85611BF5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_eus:6.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8382A145-CDD9-437E-9DE7-A349956778B3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"54D669D4-6D7E-449D-80C1-28FA44F06FFE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9BBCD86A-E6C7-4444-9D74-F861084090F0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D0AC5CD5-6E58-433C-9EB3-6DFE5656463E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E5ED5807-55B7-47C5-97A6-03233F4FBC3A\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"036E8A89-7A16-411F-9D31-676313BB7244\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"16F59A04-14CF-49E2-9973-645477EA09DA\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*\", \"matchCriteriaId\": \"01EDA41C-6B2E-49AF-B503-EB3882265C11\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EF49D26F-142E-468B-87C1-BABEA445255C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E4174F4F-149E-41A6-BBCC-D01114C05F38\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*\", \"matchCriteriaId\": \"8D305F7A-D159-4716-AB26-5E38BB5CD991\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Qemu, as used in Xen 4.0, 4.1 and possibly other products, when emulating certain devices with a virtual console backend, allows local OS guest users to gain privileges via a crafted escape VT100 sequence that triggers the overwrite of a \\\"device model\u0027s address space.\\\"\"}, {\"lang\": \"es\", \"value\": \"Qemu, tal como se utiliza en Xen v4.0, v4.1 y posiblemente otros productos, al emular ciertos dispositivos con una consola virtual, permite a los usuarios locales del SO invitado obtener privilegios a trav\\u00e9s de una secuencia VT100 de escape manipulada que desencadena la sobrescritura del espacio de direcciones de un \\\"device model\u0027s address space.\\\"\"}]",
      "id": "CVE-2012-3515",
      "lastModified": "2024-11-21T01:41:02.263",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:C/I:C/A:C\", \"baseScore\": 7.2, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 3.9, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2012-11-23T20:55:03.523",
      "references": "[{\"url\": \"http://git.qemu.org/?p=qemu-stable-0.15.git%3Ba=log\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00001.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00003.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00004.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00005.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00012.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00016.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00017.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00018.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00024.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00026.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00027.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00002.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00017.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00018.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-updates/2012-09/msg00051.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.xen.org/archives/html/xen-announce/2012-09/msg00003.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Vendor Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2012-1233.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2012-1234.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2012-1235.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2012-1236.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2012-1262.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2012-1325.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/50472\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/50528\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/50530\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/50632\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/50689\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/50860\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/50913\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/51413\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/55082\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://security.gentoo.org/glsa/glsa-201309-24.xml\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://support.citrix.com/article/CTX134708\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://wiki.xen.org/wiki/Security_Announcements#XSA-17_Qemu_VT100_emulation_vulnerability\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.debian.org/security/2012/dsa-2543\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.debian.org/security/2012/dsa-2545\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2012/09/05/10\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Mitigation\", \"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/55413\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.ubuntu.com/usn/USN-1590-1\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/201604-03\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://git.qemu.org/?p=qemu-stable-0.15.git%3Ba=log\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00001.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00003.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00004.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00005.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00012.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00016.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00017.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00018.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00024.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00026.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00027.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00002.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00017.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00018.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-updates/2012-09/msg00051.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.xen.org/archives/html/xen-announce/2012-09/msg00003.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Vendor Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2012-1233.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2012-1234.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2012-1235.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2012-1236.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2012-1262.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2012-1325.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/50472\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/50528\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/50530\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/50632\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/50689\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/50860\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/50913\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/51413\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/55082\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://security.gentoo.org/glsa/glsa-201309-24.xml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://support.citrix.com/article/CTX134708\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://wiki.xen.org/wiki/Security_Announcements#XSA-17_Qemu_VT100_emulation_vulnerability\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.debian.org/security/2012/dsa-2543\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.debian.org/security/2012/dsa-2545\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2012/09/05/10\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Mitigation\", \"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/55413\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.ubuntu.com/usn/USN-1590-1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/201604-03\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
      "sourceIdentifier": "secalert@redhat.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2012-3515\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2012-11-23T20:55:03.523\",\"lastModified\":\"2026-04-29T01:13:23.040\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Qemu, as used in Xen 4.0, 4.1 and possibly other products, when emulating certain devices with a virtual console backend, allows local OS guest users to gain privileges via a crafted escape VT100 sequence that triggers the overwrite of a \\\"device model\u0027s address space.\\\"\"},{\"lang\":\"es\",\"value\":\"Qemu, tal como se utiliza en Xen v4.0, v4.1 y posiblemente otros productos, al emular ciertos dispositivos con una consola virtual, permite a los usuarios locales del SO invitado obtener privilegios a trav\u00e9s de una secuencia VT100 de escape manipulada que desencadena la sobrescritura del espacio de direcciones de un \\\"device model\u0027s address space.\\\"\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":7.2,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":3.9,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.2.0\",\"matchCriteriaId\":\"03FB8819-CA76-4C31-A901-6ACCB8325928\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"550223A9-B9F1-440A-8C25-9F0F76AF7301\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D532B60-C8DD-4A2F-9D05-E574D23EB754\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE554781-1EB9-446E-911F-6C11970C47F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EBB2C482-D2A4-48B3-ACE7-E1DFDCC409B5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D806A17E-B8F9-466D-807D-3F1E77603DC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_desktop:10:sp4:*:*:*:*:*:*\",\"matchCriteriaId\":\"F0545634-EC4A-48E8-AB3D-49802FB11758\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_desktop:11:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"00720D8C-3FF3-4B1C-B74B-91F01A544399\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:10:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"22A79A35-05DB-4B9F-AD3E-EA6F933CF10C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:ltss:*:*:*\",\"matchCriteriaId\":\"CED02712-1031-4206-AC4D-E68710F46EC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:*:*:*:*\",\"matchCriteriaId\":\"A53FF936-C785-4CEF-BAD0-3C3EB90EE466\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:ltss:*:*:*\",\"matchCriteriaId\":\"67960FB9-13D1-4DEE-8158-31BF31BCBE6F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:*:-:*:*\",\"matchCriteriaId\":\"88D6E858-FD8F-4C55-B7D5-CEEDA2BBA898\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:*:vmware:*:*\",\"matchCriteriaId\":\"DB4D6749-81A1-41D7-BF4F-1C45A7F49A22\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp4:*:*:*:*:*:*\",\"matchCriteriaId\":\"436EF2ED-FDBB-4B64-8EC4-33C3E4253F06\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"5AA37837-3083-4DC7-94F4-54FD5D7CB53C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:virtualization:3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D86166F9-BBF0-4650-8CCD-0F9C97104D21\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:virtualization:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FCFEF451-4B77-4259-8000-B252E699A950\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:virtualization:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"37BA55FC-D350-4DEB-9802-40AF59C99E79\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"133AAFA7-AF42-4D7B-8822-AA2E85611BF5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_eus:6.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8382A145-CDD9-437E-9DE7-A349956778B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"54D669D4-6D7E-449D-80C1-28FA44F06FFE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BBCD86A-E6C7-4444-9D74-F861084090F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D0AC5CD5-6E58-433C-9EB3-6DFE5656463E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E5ED5807-55B7-47C5-97A6-03233F4FBC3A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"036E8A89-7A16-411F-9D31-676313BB7244\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"16F59A04-14CF-49E2-9973-645477EA09DA\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*\",\"matchCriteriaId\":\"01EDA41C-6B2E-49AF-B503-EB3882265C11\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF49D26F-142E-468B-87C1-BABEA445255C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E4174F4F-149E-41A6-BBCC-D01114C05F38\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"8D305F7A-D159-4716-AB26-5E38BB5CD991\"}]}]}],\"references\":[{\"url\":\"http://git.qemu.org/?p=qemu-stable-0.15.git%3Ba=log\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00001.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00003.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00004.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00005.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00012.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00016.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00017.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00018.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00024.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00026.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00027.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00002.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00017.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00018.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2012-09/msg00051.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.xen.org/archives/html/xen-announce/2012-09/msg00003.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Vendor Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-1233.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-1234.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-1235.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-1236.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-1262.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-1325.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/50472\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/50528\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/50530\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/50632\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/50689\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/50860\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/50913\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/51413\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/55082\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://security.gentoo.org/glsa/glsa-201309-24.xml\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://support.citrix.com/article/CTX134708\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://wiki.xen.org/wiki/Security_Announcements#XSA-17_Qemu_VT100_emulation_vulnerability\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.debian.org/security/2012/dsa-2543\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.debian.org/security/2012/dsa-2545\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2012/09/05/10\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Mitigation\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/55413\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-1590-1\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201604-03\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://git.qemu.org/?p=qemu-stable-0.15.git%3Ba=log\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00001.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00003.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00004.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00005.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00012.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00016.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00017.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00018.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00024.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00026.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00027.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00002.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00017.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00018.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2012-09/msg00051.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.xen.org/archives/html/xen-announce/2012-09/msg00003.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Vendor Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-1233.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-1234.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-1235.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-1236.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-1262.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-1325.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/50472\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/50528\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/50530\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/50632\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/50689\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/50860\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/50913\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/51413\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/55082\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://security.gentoo.org/glsa/glsa-201309-24.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://support.citrix.com/article/CTX134708\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://wiki.xen.org/wiki/Security_Announcements#XSA-17_Qemu_VT100_emulation_vulnerability\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.debian.org/security/2012/dsa-2543\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.debian.org/security/2012/dsa-2545\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2012/09/05/10\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Mitigation\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/55413\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-1590-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201604-03\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
  }
}

RHSA-2012_1325

Vulnerability from csaf_redhat - Published: 2012-10-02 17:09 - Updated: 2024-11-22 05:47

Summary

Red Hat Security Advisory: rhev-hypervisor6 security and bug fix update

Severity

Important

Notes

Topic: An updated rhev-hypervisor6 package that fixes multiple security issues and one bug is now available. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

Details: The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization Hypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor is a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes everything necessary to run and manage virtual machines: A subset of the Red Hat Enterprise Linux operating environment and the Red Hat Enterprise Virtualization Agent. Note: Red Hat Enterprise Virtualization Hypervisor is only available for the Intel 64 and AMD64 architectures with virtualization extensions. A flaw was found in the way QEMU handled VT100 terminal escape sequences when emulating certain character devices. A guest user with privileges to write to a character device that is emulated on the host using a virtual console back-end could use this flaw to crash the qemu-kvm process on the host or, possibly, escalate their privileges on the host. (CVE-2012-3515) This flaw did not affect the default use of Red Hat Enterprise Virtualization Hypervisor: it is not possible to add a device that uses a virtual console back-end via Red Hat Enterprise Virtualization Manager. To specify a virtual console back-end for a device and therefore be vulnerable to this issue, the device would have to be created another way, for example, by using a VDSM hook. Note that at this time hooks can only be used on Red Hat Enterprise Linux hosts, not Red Hat Enterprise Virtualization Hypervisor. Multiple integer overflow flaws, leading to stack-based buffer overflows, were found in glibc's functions for converting a string to a numeric representation (strtod(), strtof(), and strtold()). If an application used such a function on attacker controlled input, it could cause the application to crash or, potentially, execute arbitrary code. (CVE-2012-3480) Red Hat would like to thank the Xen project for reporting the CVE-2012-3515 issue. This updated package provides updated components that include fixes for various security issues. These issues have no security impact on Red Hat Enterprise Virtualization Hypervisor itself, however. The security fixes included in this update address the following CVE numbers: CVE-2012-4244 (bind issue) CVE-2012-3524 (dbus issue) CVE-2012-2313, CVE-2012-2384, CVE-2012-2390, CVE-2012-3430, and CVE-2012-3552 (kernel issues) CVE-2012-3445 (libvirt issue) CVE-2011-3102 and CVE-2012-2807 (libxml2 issues) CVE-2011-1202, CVE-2011-3970, CVE-2012-2825, CVE-2012-2870, CVE-2012-2871, and CVE-2012-2893 (libxslt issues) This updated Red Hat Enterprise Virtualization Hypervisor package also fixes the following bug: * Previously, the Manager listed all installed Hypervisor ISO images as available even when they did not support the VDSM compatibility version required by the selected host. The rhev-hypervisor6 package now maintains a text file for each installed ISO image. The file lists the VDSM compatibility versions supported by the relevant ISO image. The Manager uses this information to ensure that only those Hypervisor ISO images that are relevant to the selected host are listed. (BZ#856827) Users of the Red Hat Enterprise Virtualization Hypervisor are advised to upgrade to this updated package, which fixes these issues.

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2012-3480

Multiple integer overflows in the (1) strtod, (2) strtof, (3) strtold, (4) strtod_l, and other unspecified "related functions" in stdlib in GNU C Library (aka glibc or libc6) 2.16 allow local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string, which triggers a stack-based buffer overflow.

4.4 ()


                        
                          AV:L/AC:M/Au:N/C:P/I:P/A:P

CWE-121 - Stack-based Buffer Overflow

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.3-20120926.0.el6_3.noarch		—	Vendor Fix fix

Threats

Impact Moderate

CVE-2012-3515

7.4 ()


                        
                          AV:A/AC:M/Au:S/C:C/I:C/A:C

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.3-20120926.0.el6_3.noarch		—	Vendor Fix fix

Threats

Impact Important

References

17 references

URL	Category
https://access.redhat.com/errata/RHSA-2012:1325	self
https://access.redhat.com/security/updates/classi…	external
https://access.redhat.com/knowledge/docs/en-US/Re…	external
https://access.redhat.com/knowledge/docs/en-US/Re…	external
https://bugzilla.redhat.com/show_bug.cgi?id=847715	external
https://bugzilla.redhat.com/show_bug.cgi?id=851252	external
https://bugzilla.redhat.com/show_bug.cgi?id=856827	external
https://bugzilla.redhat.com/show_bug.cgi?id=856830	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2012-3480	self
https://bugzilla.redhat.com/show_bug.cgi?id=847715	external
https://www.cve.org/CVERecord?id=CVE-2012-3480	external
https://nvd.nist.gov/vuln/detail/CVE-2012-3480	external
https://access.redhat.com/security/cve/CVE-2012-3515	self
https://bugzilla.redhat.com/show_bug.cgi?id=851252	external
https://www.cve.org/CVERecord?id=CVE-2012-3515	external
https://nvd.nist.gov/vuln/detail/CVE-2012-3515	external

Acknowledgments

Xen project

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated rhev-hypervisor6 package that fixes multiple security issues and\none bug is now available.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization\nHypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor\nis a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes\neverything necessary to run and manage virtual machines: A subset of the\nRed Hat Enterprise Linux operating environment and the Red Hat Enterprise\nVirtualization Agent.\n\nNote: Red Hat Enterprise Virtualization Hypervisor is only available for\nthe Intel 64 and AMD64 architectures with virtualization extensions.\n\nA flaw was found in the way QEMU handled VT100 terminal escape sequences\nwhen emulating certain character devices. A guest user with privileges to\nwrite to a character device that is emulated on the host using a virtual\nconsole back-end could use this flaw to crash the qemu-kvm process on the\nhost or, possibly, escalate their privileges on the host. (CVE-2012-3515)\n\nThis flaw did not affect the default use of Red Hat Enterprise\nVirtualization Hypervisor: it is not possible to add a device that uses a\nvirtual console back-end via Red Hat Enterprise Virtualization Manager.\n\nTo specify a virtual console back-end for a device and therefore be\nvulnerable to this issue, the device would have to be created another way,\nfor example, by using a VDSM hook. Note that at this time hooks can only be\nused on Red Hat Enterprise Linux hosts, not Red Hat Enterprise\nVirtualization Hypervisor.\n\nMultiple integer overflow flaws, leading to stack-based buffer overflows,\nwere found in glibc\u0027s functions for converting a string to a numeric\nrepresentation (strtod(), strtof(), and strtold()). If an application used\nsuch a function on attacker controlled input, it could cause the\napplication to crash or, potentially, execute arbitrary code.\n(CVE-2012-3480)\n\nRed Hat would like to thank the Xen project for reporting the CVE-2012-3515\nissue.\n\nThis updated package provides updated components that include fixes for\nvarious security issues. These issues have no security impact on Red Hat\nEnterprise Virtualization Hypervisor itself, however. The security fixes\nincluded in this update address the following CVE numbers:\n\nCVE-2012-4244 (bind issue)\n\nCVE-2012-3524 (dbus issue)\n\nCVE-2012-2313, CVE-2012-2384, CVE-2012-2390, CVE-2012-3430, and\nCVE-2012-3552 (kernel issues)\n\nCVE-2012-3445 (libvirt issue)\n\nCVE-2011-3102 and CVE-2012-2807 (libxml2 issues)\n\nCVE-2011-1202, CVE-2011-3970, CVE-2012-2825, CVE-2012-2870, CVE-2012-2871,\nand CVE-2012-2893 (libxslt issues)\n\nThis updated Red Hat Enterprise Virtualization Hypervisor package also\nfixes the following bug:\n\n* Previously, the Manager listed all installed Hypervisor ISO images as\navailable even when they did not support the VDSM compatibility version\nrequired by the selected host. The rhev-hypervisor6 package now maintains a\ntext file for each installed ISO image. The file lists the VDSM\ncompatibility versions supported by the relevant ISO image. The Manager\nuses this information to ensure that only those Hypervisor ISO images that\nare relevant to the selected host are listed. (BZ#856827)\n\nUsers of the Red Hat Enterprise Virtualization Hypervisor are advised to\nupgrade to this updated package, which fixes these issues.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2012:1325",
        "url": "https://access.redhat.com/errata/RHSA-2012:1325"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_Linux/5/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html",
        "url": "https://access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_Linux/5/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html",
        "url": "https://access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html"
      },
      {
        "category": "external",
        "summary": "847715",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=847715"
      },
      {
        "category": "external",
        "summary": "851252",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=851252"
      },
      {
        "category": "external",
        "summary": "856827",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=856827"
      },
      {
        "category": "external",
        "summary": "856830",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=856830"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2012/rhsa-2012_1325.json"
      }
    ],
    "title": "Red Hat Security Advisory: rhev-hypervisor6 security and bug fix update",
    "tracking": {
      "current_release_date": "2024-11-22T05:47:27+00:00",
      "generator": {
        "date": "2024-11-22T05:47:27+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2012:1325",
      "initial_release_date": "2012-10-02T17:09:00+00:00",
      "revision_history": [
        {
          "date": "2012-10-02T17:09:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2012-10-02T17:10:14+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T05:47:27+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "RHEV Hypervisor for RHEL-6",
                "product": {
                  "name": "RHEV Hypervisor for RHEL-6",
                  "product_id": "6Server-RHEV-Hypervisor",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6::hypervisor"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Virtualization"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "rhev-hypervisor6-0:6.3-20120926.0.el6_3.noarch",
                "product": {
                  "name": "rhev-hypervisor6-0:6.3-20120926.0.el6_3.noarch",
                  "product_id": "rhev-hypervisor6-0:6.3-20120926.0.el6_3.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rhev-hypervisor6@6.3-20120926.0.el6_3?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rhev-hypervisor6-0:6.3-20120926.0.el6_3.noarch as a component of RHEV Hypervisor for RHEL-6",
          "product_id": "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.3-20120926.0.el6_3.noarch"
        },
        "product_reference": "rhev-hypervisor6-0:6.3-20120926.0.el6_3.noarch",
        "relates_to_product_reference": "6Server-RHEV-Hypervisor"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2012-3480",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "discovery_date": "2012-08-13T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "847715"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Multiple integer overflows in the (1) strtod, (2) strtof, (3) strtold, (4) strtod_l, and other unspecified \"related functions\" in stdlib in GNU C Library (aka glibc or libc6) 2.16 allow local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string, which triggers a stack-based buffer overflow.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "glibc: Integer overflows, leading to stack-based buffer overflows in strto* related routines",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.3-20120926.0.el6_3.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2012-3480"
        },
        {
          "category": "external",
          "summary": "RHBZ#847715",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=847715"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3480",
          "url": "https://www.cve.org/CVERecord?id=CVE-2012-3480"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3480",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3480"
        }
      ],
      "release_date": "2012-08-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-10-02T17:09:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization 2.2\nenvironments using the disk image provided by this package, refer to: \n\nhttps://access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_Linux/5/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization 3.0\nenvironments using the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html",
          "product_ids": [
            "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.3-20120926.0.el6_3.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:1325"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 4.4,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.3-20120926.0.el6_3.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "glibc: Integer overflows, leading to stack-based buffer overflows in strto* related routines"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Xen project"
          ]
        }
      ],
      "cve": "CVE-2012-3515",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2012-08-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "851252"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Qemu, as used in Xen 4.0, 4.1 and possibly other products, when emulating certain devices with a virtual console backend, allows local OS guest users to gain privileges via a crafted escape VT100 sequence that triggers the overwrite of a \"device model\u0027s address space.\"",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "qemu: VT100 emulation vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did affect the versions of xen package as shipped with Red Hat\nEnterprise Linux 5.\n\nThis issue did affect the versions of kvm package as shipped with Red Hat\nEnterprise Linux 5.\n\nThis issue did affect the versions of qemu-kvm package as shipped with Red Hat\nEnterprise Linux 6.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.3-20120926.0.el6_3.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2012-3515"
        },
        {
          "category": "external",
          "summary": "RHBZ#851252",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=851252"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3515",
          "url": "https://www.cve.org/CVERecord?id=CVE-2012-3515"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3515",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3515"
        }
      ],
      "release_date": "2012-09-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2012-10-02T17:09:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization 2.2\nenvironments using the disk image provided by this package, refer to: \n\nhttps://access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_Linux/5/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html\n\nTo upgrade Hypervisors in Red Hat Enterprise Virtualization 3.0\nenvironments using the disk image provided by this package, refer to:\n\nhttps://access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Hypervisor_Deployment_Guide/chap-Deployment_Guide-Upgrading_Red_Hat_Enterprise_Virtualization_Hypervisors.html",
          "product_ids": [
            "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.3-20120926.0.el6_3.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2012:1325"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.4,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:A/AC:M/Au:S/C:C/I:C/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.3-20120926.0.el6_3.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "qemu: VT100 emulation vulnerability"
    }
  ]
}

SUSE-SU-2015:0929-1

Vulnerability from csaf_suse - Published: 2012-08-31 14:36 - Updated: 2012-08-31 14:36

Summary

Security update for kvm

Severity

Moderate

Notes

Title of the patch: Security update for kvm

Description of the patch: The kvm qemu vt100 emulation was affected by a problem where specific vt100 sequences could have been used by guest users to affect the host. (CVE-2012-3515 aka XSA-17). Also a temp file race was fixed. (CVE-2012-2652) Security Issue reference: * CVE-2012-3515 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3515> * CVE-2012-2652 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2652>

Patchnames: slessp1-kvm

CVE-2011-1750

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2011-1751

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2011-2212

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2011-2512

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2011-2527

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2012-0029

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2012-2652

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2012-3515

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2014-0222

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2014-0223

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2015-3209

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2015-3456

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

76 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/598271	self
https://bugzilla.suse.com/598298	self
https://bugzilla.suse.com/599095	self
https://bugzilla.suse.com/603161	self
https://bugzilla.suse.com/603179	self
https://bugzilla.suse.com/610682	self
https://bugzilla.suse.com/619991	self
https://bugzilla.suse.com/621793	self
https://bugzilla.suse.com/626654	self
https://bugzilla.suse.com/637297	self
https://bugzilla.suse.com/689895	self
https://bugzilla.suse.com/690781	self
https://bugzilla.suse.com/695510	self
https://bugzilla.suse.com/695766	self
https://bugzilla.suse.com/698237	self
https://bugzilla.suse.com/701161	self
https://bugzilla.suse.com/702823	self
https://bugzilla.suse.com/704933	self
https://bugzilla.suse.com/705095	self
https://bugzilla.suse.com/705304	self
https://bugzilla.suse.com/740165	self
https://bugzilla.suse.com/764526	self
https://bugzilla.suse.com/777084	self
https://bugzilla.suse.com/877642	self
https://bugzilla.suse.com/877645	self
https://bugzilla.suse.com/929339	self
https://bugzilla.suse.com/932770	self
https://www.suse.com/security/cve/CVE-2011-1750/	self
https://www.suse.com/security/cve/CVE-2011-1751/	self
https://www.suse.com/security/cve/CVE-2011-2212/	self
https://www.suse.com/security/cve/CVE-2011-2512/	self
https://www.suse.com/security/cve/CVE-2011-2527/	self
https://www.suse.com/security/cve/CVE-2012-0029/	self
https://www.suse.com/security/cve/CVE-2012-2652/	self
https://www.suse.com/security/cve/CVE-2012-3515/	self
https://www.suse.com/security/cve/CVE-2014-0222/	self
https://www.suse.com/security/cve/CVE-2014-0223/	self
https://www.suse.com/security/cve/CVE-2015-3209/	self
https://www.suse.com/security/cve/CVE-2015-3456/	self
https://www.suse.com/security/cve/CVE-2011-1750	external
https://bugzilla.suse.com/689895	external
https://www.suse.com/security/cve/CVE-2011-1751	external
https://bugzilla.suse.com/690781	external
https://www.suse.com/security/cve/CVE-2011-2212	external
https://bugzilla.suse.com/701161	external
https://www.suse.com/security/cve/CVE-2011-2512	external
https://bugzilla.suse.com/702823	external
https://www.suse.com/security/cve/CVE-2011-2527	external
https://bugzilla.suse.com/705304	external
https://www.suse.com/security/cve/CVE-2012-0029	external
https://bugzilla.suse.com/740165	external
https://bugzilla.suse.com/747331	external
https://bugzilla.suse.com/757537	external
https://www.suse.com/security/cve/CVE-2012-2652	external
https://bugzilla.suse.com/764526	external
https://www.suse.com/security/cve/CVE-2012-3515	external
https://bugzilla.suse.com/777084	external
https://www.suse.com/security/cve/CVE-2014-0222	external
https://bugzilla.suse.com/1072223	external
https://bugzilla.suse.com/877642	external
https://bugzilla.suse.com/950367	external
https://bugzilla.suse.com/964925	external
https://www.suse.com/security/cve/CVE-2014-0223	external
https://bugzilla.suse.com/877645	external
https://www.suse.com/security/cve/CVE-2015-3209	external
https://bugzilla.suse.com/932267	external
https://bugzilla.suse.com/932770	external
https://bugzilla.suse.com/932823	external
https://www.suse.com/security/cve/CVE-2015-3456	external
https://bugzilla.suse.com/929339	external
https://bugzilla.suse.com/932770	external
https://bugzilla.suse.com/935900	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for kvm",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\nThe kvm qemu vt100 emulation was affected by a problem where specific vt100 \nsequences could have been used by guest users to affect the host. \n(CVE-2012-3515 aka XSA-17).\n\nAlso a temp file race was fixed. (CVE-2012-2652)\n\nSecurity Issue reference:\n\n    * CVE-2012-3515\n      \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3515\u003e\n    * CVE-2012-2652\n      \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2652\u003e\n\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "slessp1-kvm",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_0929-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2015:0929-1",
        "url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150929-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2015:0929-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2015-May/001402.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 598271",
        "url": "https://bugzilla.suse.com/598271"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 598298",
        "url": "https://bugzilla.suse.com/598298"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 599095",
        "url": "https://bugzilla.suse.com/599095"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 603161",
        "url": "https://bugzilla.suse.com/603161"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 603179",
        "url": "https://bugzilla.suse.com/603179"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 610682",
        "url": "https://bugzilla.suse.com/610682"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 619991",
        "url": "https://bugzilla.suse.com/619991"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 621793",
        "url": "https://bugzilla.suse.com/621793"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 626654",
        "url": "https://bugzilla.suse.com/626654"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 637297",
        "url": "https://bugzilla.suse.com/637297"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 689895",
        "url": "https://bugzilla.suse.com/689895"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 690781",
        "url": "https://bugzilla.suse.com/690781"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 695510",
        "url": "https://bugzilla.suse.com/695510"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 695766",
        "url": "https://bugzilla.suse.com/695766"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 698237",
        "url": "https://bugzilla.suse.com/698237"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 701161",
        "url": "https://bugzilla.suse.com/701161"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 702823",
        "url": "https://bugzilla.suse.com/702823"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 704933",
        "url": "https://bugzilla.suse.com/704933"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 705095",
        "url": "https://bugzilla.suse.com/705095"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 705304",
        "url": "https://bugzilla.suse.com/705304"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 740165",
        "url": "https://bugzilla.suse.com/740165"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 764526",
        "url": "https://bugzilla.suse.com/764526"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 777084",
        "url": "https://bugzilla.suse.com/777084"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 877642",
        "url": "https://bugzilla.suse.com/877642"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 877645",
        "url": "https://bugzilla.suse.com/877645"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 929339",
        "url": "https://bugzilla.suse.com/929339"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 932770",
        "url": "https://bugzilla.suse.com/932770"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2011-1750 page",
        "url": "https://www.suse.com/security/cve/CVE-2011-1750/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2011-1751 page",
        "url": "https://www.suse.com/security/cve/CVE-2011-1751/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2011-2212 page",
        "url": "https://www.suse.com/security/cve/CVE-2011-2212/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2011-2512 page",
        "url": "https://www.suse.com/security/cve/CVE-2011-2512/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2011-2527 page",
        "url": "https://www.suse.com/security/cve/CVE-2011-2527/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2012-0029 page",
        "url": "https://www.suse.com/security/cve/CVE-2012-0029/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2012-2652 page",
        "url": "https://www.suse.com/security/cve/CVE-2012-2652/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2012-3515 page",
        "url": "https://www.suse.com/security/cve/CVE-2012-3515/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-0222 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-0222/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-0223 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-0223/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2015-3209 page",
        "url": "https://www.suse.com/security/cve/CVE-2015-3209/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2015-3456 page",
        "url": "https://www.suse.com/security/cve/CVE-2015-3456/"
      }
    ],
    "title": "Security update for kvm",
    "tracking": {
      "current_release_date": "2012-08-31T14:36:20Z",
      "generator": {
        "date": "2012-08-31T14:36:20Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2015:0929-1",
      "initial_release_date": "2012-08-31T14:36:20Z",
      "revision_history": [
        {
          "date": "2012-08-31T14:36:20Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kvm-0.12.5-1.24.1.i586",
                "product": {
                  "name": "kvm-0.12.5-1.24.1.i586",
                  "product_id": "kvm-0.12.5-1.24.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kvm-0.12.5-1.24.1.x86_64",
                "product": {
                  "name": "kvm-0.12.5-1.24.1.x86_64",
                  "product_id": "kvm-0.12.5-1.24.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 11 SP1-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 11 SP1-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 11 SP1-TERADATA",
                "product": {
                  "name": "SUSE Linux Enterprise Server 11 SP1-TERADATA",
                  "product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles:11:sp1:teradata"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kvm-0.12.5-1.24.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586"
        },
        "product_reference": "kvm-0.12.5-1.24.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kvm-0.12.5-1.24.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64"
        },
        "product_reference": "kvm-0.12.5-1.24.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kvm-0.12.5-1.24.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
          "product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586"
        },
        "product_reference": "kvm-0.12.5-1.24.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kvm-0.12.5-1.24.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
          "product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
        },
        "product_reference": "kvm-0.12.5-1.24.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2011-1750",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2011-1750"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Multiple heap-based buffer overflows in the virtio-blk driver (hw/virtio-blk.c) in qemu-kvm 0.14.0 allow local guest users to cause a denial of service (guest crash) and possibly gain privileges via a (1) write request to the virtio_blk_handle_write function or (2) read request to the virtio_blk_handle_read function that is not properly aligned.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2011-1750",
          "url": "https://www.suse.com/security/cve/CVE-2011-1750"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 689895 for CVE-2011-1750",
          "url": "https://bugzilla.suse.com/689895"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2012-08-31T14:36:20Z",
          "details": "important"
        }
      ],
      "title": "CVE-2011-1750"
    },
    {
      "cve": "CVE-2011-1751",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2011-1751"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The pciej_write function in hw/acpi_piix4.c in the PIIX4 Power Management emulation in qemu-kvm does not check if a device is hotpluggable before unplugging the PCI-ISA bridge, which allows privileged guest users to cause a denial of service (guest crash) and possibly execute arbitrary code by sending a crafted value to the 0xae08 (PCI_EJ_BASE) I/O port, which leads to a use-after-free related to \"active qemu timers.\"",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2011-1751",
          "url": "https://www.suse.com/security/cve/CVE-2011-1751"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 690781 for CVE-2011-1751",
          "url": "https://bugzilla.suse.com/690781"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2012-08-31T14:36:20Z",
          "details": "important"
        }
      ],
      "title": "CVE-2011-1751"
    },
    {
      "cve": "CVE-2011-2212",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2011-2212"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Buffer overflow in the virtio subsystem in qemu-kvm 0.14.0 and earlier allows privileged guest users to cause a denial of service (guest crash) or gain privileges via a crafted indirect descriptor related to \"virtqueue in and out requests.\"",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2011-2212",
          "url": "https://www.suse.com/security/cve/CVE-2011-2212"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 701161 for CVE-2011-2212",
          "url": "https://bugzilla.suse.com/701161"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2012-08-31T14:36:20Z",
          "details": "important"
        }
      ],
      "title": "CVE-2011-2212"
    },
    {
      "cve": "CVE-2011-2512",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2011-2512"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The virtio_queue_notify in qemu-kvm 0.14.0 and earlier does not properly validate the virtqueue number, which allows guest users to cause a denial of service (guest crash) and possibly execute arbitrary code via a negative number in the Queue Notify field of the Virtio Header, which bypasses a signed comparison.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2011-2512",
          "url": "https://www.suse.com/security/cve/CVE-2011-2512"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 702823 for CVE-2011-2512",
          "url": "https://bugzilla.suse.com/702823"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2012-08-31T14:36:20Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2011-2512"
    },
    {
      "cve": "CVE-2011-2527",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2011-2527"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The change_process_uid function in os-posix.c in Qemu 0.14.0 and earlier does not properly drop group privileges when the -runas option is used, which allows local guest users to access restricted files on the host.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2011-2527",
          "url": "https://www.suse.com/security/cve/CVE-2011-2527"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 705304 for CVE-2011-2527",
          "url": "https://bugzilla.suse.com/705304"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2012-08-31T14:36:20Z",
          "details": "low"
        }
      ],
      "title": "CVE-2011-2527"
    },
    {
      "cve": "CVE-2012-0029",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2012-0029"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Heap-based buffer overflow in the process_tx_desc function in the e1000 emulation (hw/e1000.c) in qemu-kvm 0.12, and possibly other versions, allows guest OS users to cause a denial of service (QEMU crash) and possibly execute arbitrary code via crafted legacy mode packets.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2012-0029",
          "url": "https://www.suse.com/security/cve/CVE-2012-0029"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 740165 for CVE-2012-0029",
          "url": "https://bugzilla.suse.com/740165"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 747331 for CVE-2012-0029",
          "url": "https://bugzilla.suse.com/747331"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 757537 for CVE-2012-0029",
          "url": "https://bugzilla.suse.com/757537"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2012-08-31T14:36:20Z",
          "details": "important"
        }
      ],
      "title": "CVE-2012-0029"
    },
    {
      "cve": "CVE-2012-2652",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2012-2652"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The bdrv_open function in Qemu 1.0 does not properly handle the failure of the mkstemp function, when in snapshot node, which allows local users to overwrite or read arbitrary files via a symlink attack on an unspecified temporary file.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2012-2652",
          "url": "https://www.suse.com/security/cve/CVE-2012-2652"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 764526 for CVE-2012-2652",
          "url": "https://bugzilla.suse.com/764526"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2012-08-31T14:36:20Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2012-2652"
    },
    {
      "cve": "CVE-2012-3515",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2012-3515"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Qemu, as used in Xen 4.0, 4.1 and possibly other products, when emulating certain devices with a virtual console backend, allows local OS guest users to gain privileges via a crafted escape VT100 sequence that triggers the overwrite of a \"device model\u0027s address space.\"",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2012-3515",
          "url": "https://www.suse.com/security/cve/CVE-2012-3515"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 777084 for CVE-2012-3515",
          "url": "https://bugzilla.suse.com/777084"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2012-08-31T14:36:20Z",
          "details": "important"
        }
      ],
      "title": "CVE-2012-3515"
    },
    {
      "cve": "CVE-2014-0222",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-0222"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service (crash) via a large L2 table in a QCOW version 1 image.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-0222",
          "url": "https://www.suse.com/security/cve/CVE-2014-0222"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1072223 for CVE-2014-0222",
          "url": "https://bugzilla.suse.com/1072223"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 877642 for CVE-2014-0222",
          "url": "https://bugzilla.suse.com/877642"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 950367 for CVE-2014-0222",
          "url": "https://bugzilla.suse.com/950367"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 964925 for CVE-2014-0222",
          "url": "https://bugzilla.suse.com/964925"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2012-08-31T14:36:20Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2014-0222"
    },
    {
      "cve": "CVE-2014-0223",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-0223"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a large image size, which triggers a buffer overflow or out-of-bounds read.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-0223",
          "url": "https://www.suse.com/security/cve/CVE-2014-0223"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 877645 for CVE-2014-0223",
          "url": "https://bugzilla.suse.com/877645"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2012-08-31T14:36:20Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2014-0223"
    },
    {
      "cve": "CVE-2015-3209",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2015-3209"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Heap-based buffer overflow in the PCNET controller in QEMU allows remote attackers to execute arbitrary code by sending a packet with TXSTATUS_STARTPACKET set and then a crafted packet with TXSTATUS_DEVICEOWNS set.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2015-3209",
          "url": "https://www.suse.com/security/cve/CVE-2015-3209"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 932267 for CVE-2015-3209",
          "url": "https://bugzilla.suse.com/932267"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 932770 for CVE-2015-3209",
          "url": "https://bugzilla.suse.com/932770"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 932823 for CVE-2015-3209",
          "url": "https://bugzilla.suse.com/932823"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2012-08-31T14:36:20Z",
          "details": "important"
        }
      ],
      "title": "CVE-2015-3209"
    },
    {
      "cve": "CVE-2015-3456",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2015-3456"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
          "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2015-3456",
          "url": "https://www.suse.com/security/cve/CVE-2015-3456"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 929339 for CVE-2015-3456",
          "url": "https://bugzilla.suse.com/929339"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 932770 for CVE-2015-3456",
          "url": "https://bugzilla.suse.com/932770"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 935900 for CVE-2015-3456",
          "url": "https://bugzilla.suse.com/935900"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-LTSS:kvm-0.12.5-1.24.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.i586",
            "SUSE Linux Enterprise Server 11 SP1-TERADATA:kvm-0.12.5-1.24.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2012-08-31T14:36:20Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2015-3456"
    }
  ]
}

SUSE-SU-2015:0943-1

Vulnerability from csaf_suse - Published: 2013-06-24 20:56 - Updated: 2013-06-24 20:56

Summary

Security update for KVM

Severity

Moderate

Notes

Title of the patch: Security update for KVM

Description of the patch: This update fixes a file permission issue with qga (the QEMU Guest Agent) from the qemu/kvm package and includes several bug-fixes. (bnc#818182) (CVE-2013-2007) (bnc#786813) (bnc#725008) (bnc#712137) (bnc#824340) Security Issues: * CVE-2013-2007 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2007>

Patchnames: slessp2-kvm

CVE-2012-2652

Affected products

Recommended 6 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2012-3515

Affected products

Recommended 6 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2013-2007

Affected products

Recommended 6 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2015-3456

Affected products

Recommended 6 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

38 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/709405	self
https://bugzilla.suse.com/712137	self
https://bugzilla.suse.com/722643	self
https://bugzilla.suse.com/722958	self
https://bugzilla.suse.com/724813	self
https://bugzilla.suse.com/725008	self
https://bugzilla.suse.com/747339	self
https://bugzilla.suse.com/753313	self
https://bugzilla.suse.com/757031	self
https://bugzilla.suse.com/764526	self
https://bugzilla.suse.com/770153	self
https://bugzilla.suse.com/772586	self
https://bugzilla.suse.com/777084	self
https://bugzilla.suse.com/786813	self
https://bugzilla.suse.com/818182	self
https://bugzilla.suse.com/824340	self
https://bugzilla.suse.com/834196	self
https://bugzilla.suse.com/929339	self
https://www.suse.com/security/cve/CVE-2012-2652/	self
https://www.suse.com/security/cve/CVE-2012-3515/	self
https://www.suse.com/security/cve/CVE-2013-2007/	self
https://www.suse.com/security/cve/CVE-2015-3456/	self
https://www.suse.com/security/cve/CVE-2012-2652	external
https://bugzilla.suse.com/764526	external
https://www.suse.com/security/cve/CVE-2012-3515	external
https://bugzilla.suse.com/777084	external
https://www.suse.com/security/cve/CVE-2013-2007	external
https://bugzilla.suse.com/818181	external
https://bugzilla.suse.com/818182	external
https://bugzilla.suse.com/818183	external
https://www.suse.com/security/cve/CVE-2015-3456	external
https://bugzilla.suse.com/929339	external
https://bugzilla.suse.com/932770	external
https://bugzilla.suse.com/935900	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for KVM",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\nThis update fixes a file permission issue with qga (the QEMU Guest Agent) \nfrom the qemu/kvm package and includes several bug-fixes.\n\n(bnc#818182) (CVE-2013-2007) (bnc#786813) (bnc#725008) (bnc#712137) \n(bnc#824340)\n\nSecurity Issues:\n\n    * CVE-2013-2007\n      \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2007\u003e\n\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "slessp2-kvm",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_0943-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2015:0943-1",
        "url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150943-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2015:0943-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2015-May/001407.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 709405",
        "url": "https://bugzilla.suse.com/709405"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 712137",
        "url": "https://bugzilla.suse.com/712137"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 722643",
        "url": "https://bugzilla.suse.com/722643"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 722958",
        "url": "https://bugzilla.suse.com/722958"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 724813",
        "url": "https://bugzilla.suse.com/724813"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 725008",
        "url": "https://bugzilla.suse.com/725008"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 747339",
        "url": "https://bugzilla.suse.com/747339"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 753313",
        "url": "https://bugzilla.suse.com/753313"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 757031",
        "url": "https://bugzilla.suse.com/757031"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 764526",
        "url": "https://bugzilla.suse.com/764526"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 770153",
        "url": "https://bugzilla.suse.com/770153"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 772586",
        "url": "https://bugzilla.suse.com/772586"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 777084",
        "url": "https://bugzilla.suse.com/777084"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 786813",
        "url": "https://bugzilla.suse.com/786813"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 818182",
        "url": "https://bugzilla.suse.com/818182"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 824340",
        "url": "https://bugzilla.suse.com/824340"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 834196",
        "url": "https://bugzilla.suse.com/834196"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 929339",
        "url": "https://bugzilla.suse.com/929339"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2012-2652 page",
        "url": "https://www.suse.com/security/cve/CVE-2012-2652/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2012-3515 page",
        "url": "https://www.suse.com/security/cve/CVE-2012-3515/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2013-2007 page",
        "url": "https://www.suse.com/security/cve/CVE-2013-2007/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2015-3456 page",
        "url": "https://www.suse.com/security/cve/CVE-2015-3456/"
      }
    ],
    "title": "Security update for KVM",
    "tracking": {
      "current_release_date": "2013-06-24T20:56:39Z",
      "generator": {
        "date": "2013-06-24T20:56:39Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2015:0943-1",
      "initial_release_date": "2013-06-24T20:56:39Z",
      "revision_history": [
        {
          "date": "2013-06-24T20:56:39Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kvm-0.15.1-0.27.1.i586",
                "product": {
                  "name": "kvm-0.15.1-0.27.1.i586",
                  "product_id": "kvm-0.15.1-0.27.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kvm-0.15.1-0.27.1.x86_64",
                "product": {
                  "name": "kvm-0.15.1-0.27.1.x86_64",
                  "product_id": "kvm-0.15.1-0.27.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 11 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server 11 SP2",
                  "product_id": "SUSE Linux Enterprise Server 11 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse_sles:11:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 11 SP2-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 11 SP2-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 11 SP2-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 11 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 11 SP2",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:11:sp2"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kvm-0.15.1-0.27.1.i586 as component of SUSE Linux Enterprise Server 11 SP2",
          "product_id": "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.i586"
        },
        "product_reference": "kvm-0.15.1-0.27.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kvm-0.15.1-0.27.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP2",
          "product_id": "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.x86_64"
        },
        "product_reference": "kvm-0.15.1-0.27.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kvm-0.15.1-0.27.1.i586 as component of SUSE Linux Enterprise Server 11 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.i586"
        },
        "product_reference": "kvm-0.15.1-0.27.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kvm-0.15.1-0.27.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.x86_64"
        },
        "product_reference": "kvm-0.15.1-0.27.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kvm-0.15.1-0.27.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.i586"
        },
        "product_reference": "kvm-0.15.1-0.27.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kvm-0.15.1-0.27.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.x86_64"
        },
        "product_reference": "kvm-0.15.1-0.27.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP2"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2012-2652",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2012-2652"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The bdrv_open function in Qemu 1.0 does not properly handle the failure of the mkstemp function, when in snapshot node, which allows local users to overwrite or read arbitrary files via a symlink attack on an unspecified temporary file.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.i586",
          "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.i586",
          "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2012-2652",
          "url": "https://www.suse.com/security/cve/CVE-2012-2652"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 764526 for CVE-2012-2652",
          "url": "https://bugzilla.suse.com/764526"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.i586",
            "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.i586",
            "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2013-06-24T20:56:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2012-2652"
    },
    {
      "cve": "CVE-2012-3515",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2012-3515"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Qemu, as used in Xen 4.0, 4.1 and possibly other products, when emulating certain devices with a virtual console backend, allows local OS guest users to gain privileges via a crafted escape VT100 sequence that triggers the overwrite of a \"device model\u0027s address space.\"",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.i586",
          "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.i586",
          "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2012-3515",
          "url": "https://www.suse.com/security/cve/CVE-2012-3515"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 777084 for CVE-2012-3515",
          "url": "https://bugzilla.suse.com/777084"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.i586",
            "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.i586",
            "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2013-06-24T20:56:39Z",
          "details": "important"
        }
      ],
      "title": "CVE-2012-3515"
    },
    {
      "cve": "CVE-2013-2007",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2013-2007"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The qemu guest agent in Qemu 1.4.1 and earlier, as used by Xen, when started in daemon mode, uses weak permissions for certain files, which allows local users to read and write to these files.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.i586",
          "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.i586",
          "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2013-2007",
          "url": "https://www.suse.com/security/cve/CVE-2013-2007"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 818181 for CVE-2013-2007",
          "url": "https://bugzilla.suse.com/818181"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 818182 for CVE-2013-2007",
          "url": "https://bugzilla.suse.com/818182"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 818183 for CVE-2013-2007",
          "url": "https://bugzilla.suse.com/818183"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.i586",
            "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.i586",
            "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2013-06-24T20:56:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2013-2007"
    },
    {
      "cve": "CVE-2015-3456",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2015-3456"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.i586",
          "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.i586",
          "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2015-3456",
          "url": "https://www.suse.com/security/cve/CVE-2015-3456"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 929339 for CVE-2015-3456",
          "url": "https://bugzilla.suse.com/929339"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 932770 for CVE-2015-3456",
          "url": "https://bugzilla.suse.com/932770"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 935900 for CVE-2015-3456",
          "url": "https://bugzilla.suse.com/935900"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.i586",
            "SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.i586",
            "SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2013-06-24T20:56:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2015-3456"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2012-3515 (GCVE-0-2012-3515)

RHSA-2012_1325

SUSE-SU-2015:0929-1

SUSE-SU-2015:0943-1

Tags

Sightings

Nomenclature