[v3.2] qemu: The C+ mode offload emulation in the RTL8139 network card device model in QEMU allows remote attackers to read process heap memory via unspecified vectors.(CVE-2015-5165)
The C+ mode offload emulation in the RTL8139 network card device model in QEMU, as used in Xen 4.5.x and earlier, allows remote attackers to read process heap memory via unspecified vectors.
Reference:
https://security-tracker.debian.org/tracker/CVE-2015-5165
> http://git.qemu.org/?p=qemu.git;a=commit;h=2a3612ccc1fa9cea77bd193afbfe21c77e7e91ef
(from redmine: issue id 4592, created on 2015-08-26, closed on 2015-10-07)
- Relations:
- parent #4588 (closed)
- Changesets:
- Revision 362f7eaa by Natanael Copa on 2015-10-06T12:19:58Z:
main/qemu: security upgrade to 2.4.0.1
fixes #4660
fixes #4592