QEMU does not properly restrict write access to the PCI config space for certain PCI pass-through devices, which might allow local x86 HVM guests to gain privileges, cause a denial of service (host crash), obtain sensitive information, or possibly have other unspecified impact via unknown vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
qemu qemu |
||
debian debian linux 7.0 |
||
debian debian linux 8.0 |
||
fedoraproject fedora 20 |
||
fedoraproject fedora 21 |
||
fedoraproject fedora 22 |
||
suse linux enterprise desktop 11 |
||
suse linux enterprise desktop 12 |
||
suse linux enterprise server 11 |
||
suse linux enterprise server 12 |
||
suse linux enterprise software development kit 11 |
||
suse linux enterprise software development kit 12 |
||
citrix xenserver 6.0 |
||
citrix xenserver 6.0.2 |
||
citrix xenserver 6.1.0 |
||
citrix xenserver 6.2.0 |
||
citrix xenserver 6.5 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 14.04 |
||
canonical ubuntu linux 14.10 |
||
canonical ubuntu linux 15.04 |