qemu-kvm: privilege escalation [LWN.net]

Package(s):

qemu-kvm

CVE #(s):

CVE-2012-3515

Created:

September 5, 2012

Updated:

October 25, 2012

Description:

From the Red Hat advisory:

A flaw was found in the way QEMU handled VT100 terminal escape sequences when emulating certain character devices. A guest user with privileges to write to a character device that is emulated on the host using a virtual console back-end could use this flaw to crash the qemu-kvm process on the host or, possibly, escalate their privileges on the host.

Alerts:

Red Hat	RHSA-2012:1234-01	2012-09-05
Red Hat	RHSA-2012:1235-01	2012-09-05
Red Hat	RHSA-2012:1236-01	2012-09-05
CentOS	CESA-2012:1236	2012-09-05
CentOS	CESA-2012:1235	2012-09-05
CentOS	CESA-2012:1234	2012-09-05
Oracle	ELSA-2012-1236	2012-09-05
Oracle	ELSA-2012-1234	2012-09-05
Oracle	ELSA-2012-1235	2012-09-05
Scientific Linux	SL-qemu-20120905	2012-09-05
Scientific Linux	SL-kvm-20120905	2012-09-05
Scientific Linux	SL-xen-20120905	2012-09-05
SUSE	SUSE-SU-2012:1133-1	2012-09-07
Debian	DSA-2542-1	2012-09-08
Debian	DSA-2543-1	2012-09-08
Debian	DSA-2545-1	2012-09-08
Mageia	MGASA-2012-0263	2012-09-09
SUSE	SUSE-SU-2012:1135-1	2012-09-07
openSUSE	openSUSE-SU-2012:1153-1	2012-09-12
openSUSE	openSUSE-SU-2012:1170-1	2012-09-14
openSUSE	openSUSE-SU-2012:1174-1	2012-09-14
openSUSE	openSUSE-SU-2012:1172-1	2012-09-14
SUSE	SUSE-SU-2012:1162-1	2012-09-13
Fedora	FEDORA-2012-13443	2012-09-17
SUSE	SUSE-SU-2012:1202-1	2012-09-18
SUSE	SUSE-SU-2012:1205-1	2012-09-18
SUSE	SUSE-SU-2012:1203-1	2012-09-18
Ubuntu	USN-1590-1	2012-10-02
SUSE	SUSE-SU-2012:1320-1	2012-10-09
Fedora	FEDORA-2012-15740	2012-10-13
Fedora	FEDORA-2012-15606	2012-10-17
SUSE	SUSE-SU-2012:1203-2	2012-10-25
openSUSE	openSUSE-SU-2012:1572-1	2012-11-26
openSUSE	openSUSE-SU-2012:1573-1	2012-11-26
Mandriva	MDVSA-2013:121	2013-04-10

(Log in to post comments)