Wind River Support Network

HomeDefectsLIN7-4655

Fixed

LIN7-4655 : Security Advisory - qemu - CVE-2015-4037

Created: Aug 30, 2015 Updated: Sep 8, 2018

Resolved Date: Sep 1, 2015

Found In Version: 7.0.0.8

Fix Version: 7.0.0.9

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

The slirp_smb function in net/slirp.c in QEMU 2.3.0 and earlier creates temporary files with predictable names, which allows local users to cause a denial of service (instantiation failure) by creating /tmp/qemu-smb.*-* files before the program.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-4037

Other Downloads

Wind River Linux 7.0.0.14
Wind River Linux 7.0.0.15
Wind River Linux 7.0.0.16
Wind River Linux 7.0.0.17
Wind River Linux 7.0.0.18
Wind River Linux 7.0.0.19
Wind River Linux 7.0.0.20
Wind River Linux 7.0.0.21
Wind River Linux 7.0.0.22
Wind River Linux 7.0.0.23
Wind River Linux 7.0.0.24
Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2015-4037