Wind River Support Network

HomeDefectsLIN7-4030

Fixed

LIN7-4030 : Security Advisory - qemu - CVE-2015-4106

Created: Jun 15, 2015 Updated: Sep 8, 2018

Resolved Date: Jul 6, 2015

Found In Version: 7.0.0.6

Fix Version: 7.0.0.8

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

QEMU does not properly restrict write access to the PCI config space for certain PCI pass-through devices, which mighy allow local x86 HVM guests to gain privileges, cause a denial of service (host crash), obtain sensitive information, or possibly have other unspecified impact via unknown vectors.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-4106

Other Downloads

Wind River Linux 7.0.0.14
Wind River Linux 7.0.0.15
Wind River Linux 7.0.0.16
Wind River Linux 7.0.0.17
Wind River Linux 7.0.0.18
Wind River Linux 7.0.0.19
Wind River Linux 7.0.0.20
Wind River Linux 7.0.0.21
Wind River Linux 7.0.0.22
Wind River Linux 7.0.0.23
Wind River Linux 7.0.0.24
Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2015-4106