Wind River Support Network

HomeDefectsLIN7-5470

Fixed

LIN7-5470 : Security Advisory - qemu - CVE-2015-1779

Created: Jan 13, 2016 Updated: Sep 8, 2018

Resolved Date: Jan 20, 2016

Found In Version: 7.0.0.12

Fix Version: 7.0.0.13

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

The VNC websocket frame decoder in QEMU allows remote attackers to cause a denial of service (memory and CPU consumption) via a large (1) websocket payload or (2) HTTP headers section.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1779

Other Downloads

Wind River Linux 7.0.0.14
Wind River Linux 7.0.0.15
Wind River Linux 7.0.0.16
Wind River Linux 7.0.0.17
Wind River Linux 7.0.0.18
Wind River Linux 7.0.0.19
Wind River Linux 7.0.0.20
Wind River Linux 7.0.0.21
Wind River Linux 7.0.0.22
Wind River Linux 7.0.0.23
Wind River Linux 7.0.0.24
Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2015-1779