CVE-2014-7815

Severity

50%

Complexity

99%

Confidentiality

48%

The set_pixel_format function in ui/vnc.c in QEMU allows remote attackers to cause a denial of service (crash) via a small bytes_per_pixel value.

The set_pixel_format function in ui/vnc.c in QEMU allows remote attackers to cause a denial of service (crash) via a small bytes_per_pixel value.

CVSS 2.0 Base Score 5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P).

Overview

First reported 10 years ago

2014-11-14 15:59:00

Last updated 7 years ago

2017-12-28 02:29:00

Affected Software

Debian Linux 7.0

7.0

RedHat Enterprise Linux Desktop 7.0

7.0

RedHat Enterprise Linux HPC Node 7.0

7.0

RedHat Enterprise Linux Server 7.0

7.0

RedHat Enterprise Linux Workstation 7.0

7.0

References

http://git.qemu.org/?p=qemu.git;a=commit;h=e6908bfe8e07f2b452e78e677da1b45b1c0f6829

Issue Tracking, Patch

SUSE-SU-2015:1782

RHSA-2015:0349

Third Party Advisory

RHSA-2015:0624

Third Party Advisory

61484

62143

62144

http://support.citrix.com/article/CTX200892

DSA-3066

Third Party Advisory

DSA-3067

Third Party Advisory

USN-2409-1

Patch, Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1157641

Issue Tracking

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.