Test ID:	1.3.6.1.4.1.25623.1.1.10.2015.0149
Category:	Mageia Linux Local Security Checks
Title:	Mageia: Security Advisory (MGASA-2015-0149)
Summary:	The remote host is missing an update for the 'qemu' package(s) announced via the MGASA-2015-0149 advisory.
Description:	Summary: The remote host is missing an update for the 'qemu' package(s) announced via the MGASA-2015-0149 advisory. Vulnerability Insight: Updated qemu packages fix security vulnerabilities: A denial of service flaw was found in the way QEMU handled malformed Physical Region Descriptor Table (PRDT) data sent to the host's IDE and/or AHCI controller emulation. A privileged guest user could use this flaw to crash the system (rhbz#1204919). It was found that the QEMU's websocket frame decoder processed incoming frames without limiting resources used to process the header and the payload. An attacker able to access a guest's VNC console could use this flaw to trigger a denial of service on the host by exhausting all available memory and CPU (CVE-2015-1779). Affected Software/OS: 'qemu' package(s) on Mageia 4. Solution: Please install the updated package(s). CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2015-1779 1033975 http://www.securitytracker.com/id/1033975 73303 http://www.securityfocus.com/bid/73303 DSA-3259 http://www.debian.org/security/2015/dsa-3259 FEDORA-2015-5482 http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154656.html FEDORA-2015-5541 http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155196.html GLSA-201602-01 https://security.gentoo.org/glsa/201602-01 RHSA-2015:1931 http://rhn.redhat.com/errata/RHSA-2015-1931.html RHSA-2015:1943 http://rhn.redhat.com/errata/RHSA-2015-1943.html SUSE-SU-2015:0870 http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00033.html SUSE-SU-2015:0896 http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00042.html USN-2608-1 http://www.ubuntu.com/usn/USN-2608-1 [Qemu-devel] 20150323 [PATCH 0/2] CVE-2015-1779: fix denial of service in VNC websockets https://lists.gnu.org/archive/html/qemu-devel/2015-03/msg04894.html [Qemu-devel] 20150323 [PATCH 1/2] CVE-2015-1779: incrementally decode websocket frames https://lists.gnu.org/archive/html/qemu-devel/2015-03/msg04896.html [Qemu-devel] 20150323 [PATCH 2/2] CVE-2015-1779: limit size of HTTP headers from websockets clients https://lists.gnu.org/archive/html/qemu-devel/2015-03/msg04895.html [oss-security] 20150324 CVE-2015-1779 qemu: vnc: insufficient resource limiting in VNC websockets decoder http://www.openwall.com/lists/oss-security/2015/03/24/9 [oss-security] 20150409 Re: CVE-2015-1779 qemu: vnc: insufficient resource limiting in VNC websockets decoder http://www.openwall.com/lists/oss-security/2015/04/09/6 http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
Copyright	Copyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.