[v3.1] qemu: The C+ mode offload emulation in the RTL8139 network card device model in QEMU allows remote attackers to read process heap memory via unspecified vectors.(CVE-2015-5165)
The C+ mode offload emulation in the RTL8139 network card device model in QEMU, as used in Xen 4.5.x and earlier, allows remote attackers to read process heap memory via unspecified vectors.
Reference:
https://security-tracker.debian.org/tracker/CVE-2015-5165
> http://git.qemu.org/?p=qemu.git;a=commit;h=2a3612ccc1fa9cea77bd193afbfe21c77e7e91ef
(from redmine: issue id 4591, created on 2015-08-26, closed on 2015-10-07)
- Relations:
- parent #4588 (closed)
- Changesets:
- Revision 5509c50a by Natanael Copa on 2015-10-06T12:44:02Z:
main/qemu: various security fixes
CVE-2015-5165
CVE-2015-5225
CVE-2015-5278
CVE-2015-5279
CVE-2015-6815
fixes #4591
fixes #4661