A flaw has been found in the QEMU emulator built with IDE Emulation PCI PIIX3/4 support; the emulator is vulnerable to a use-after-free flaw, while writing data to an I/O port inside a guest. This issue is specific to the Xen platform. A privileged(CAP_SYS_RAWIO) guest user on the Xen platform could use this flaw to crash the QEMU instance or attempt to make a guest escape to QEMU-process privileges.
Find out more about CVE-2015-5166 from the MITRE CVE dictionary dictionary and NIST NVD.
This issue does not affect the versions of kvm and xen packages as shipped with Red Hat Enterprise Linux 5.
This issue does not affect the versions of the qemu-kvm packages as shipped with Red Hat Enterprise Linux 6.
This issue does not affect the Red Hat Enterprise Linux 6 based versions of qemu-kvm-rhev packages as shipped with Red Hat Enterprise Virtualization 3.
This issue does not affect the versions of the qemu-kvm packages as shipped with Red Hat Enterprise Linux 7.
This issue does not affect the Red Hat Enterprise Linux 7 based versions of the qemu-kvm-rhev packages as shipped with Red Hat Enterprise Virtualization 3.
This issue does not affect the qemu-kvm-rhev packages as shipped with any currently supported versions of Red Hat Enterprise Linux OpenStack Platform.
NOTE: The following CVSS v2 metrics and score provided are preliminary and subject to review.
Base Score | 2.9 |
---|---|
Base Metrics | AV:A/AC:M/Au:N/C:N/I:N/A:P |
Access Vector | Adjacent Network |
Access Complexity | Medium |
Authentication | None |
Confidentiality Impact | None |
Integrity Impact | None |
Availability Impact | Partial |
Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).
Platform | Package | State |
---|---|---|
Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7 | qemu-kvm-rhev | Not affected |
Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7 | qemu-kvm-rhev | Not affected |
Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) | qemu-kvm-rhev | Not affected |
Red Hat Enterprise Linux 7 | qemu-kvm-rhev | Not affected |
Red Hat Enterprise Linux 7 | qemu-kvm | Not affected |
Red Hat Enterprise Linux 6 | qemu-kvm | Not affected |
Red Hat Enterprise Linux 5 | kvm | Not affected |
Red Hat Enterprise Linux 5 | xen | Not affected |