CVE-2015-7549 - The MSI-X MMIO support in hw/pci/msix.c in QEMU (aka Quick Emulator) allows local guest OS privilege

CVE-2015-7549

Summary

The MSI-X MMIO support in hw/pci/msix.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (NULL pointer dereference and QEMU process crash) by leveraging failure to define the .write method.

References

Vulnerable Configurations

cpe:2.3:a:qemu:qemu:*:r1:*:*:*:*:*:*
cpe:2.3:a:qemu:qemu:*:r1:*:*:*:*:*:*

CVSS

Base:	2.1 (as of 13-02-2023 - 00:54)
Impact:
Exploitability:

CWE

CWE-476

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:L/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bid	80761
confirm	http://git.qemu.org/?p=qemu.git;a=commit;h=43b11a91dd861a946b231b89b754285 https://bugzilla.redhat.com/show_bug.cgi?id=1291137
debian	DSA-3471
fedora	FEDORA-2016-e9bba2bb01
gentoo	GLSA-201602-01
mlist	[oss-security] 20151214 CVE-2015-7549 Qemu: pci: msi-x: null pointer dereference issue

Last major update

13-02-2023 - 00:54

Published

30-10-2017 - 14:29

Last modified

13-02-2023 - 00:54