CVE-2015-1779 — HIGH (8.6) — White Hats Nepal

Q: What is CVE-2015-1779?

CVE-2015-1779 is a vulnerability with a CVSS score of 8.6 (HIGH). The VNC websocket frame decoder in QEMU allows remote attackers to cause a denial of service (memory and CPU consumption) via a large (1) websocket payload or (2) HTTP headers section.

Q: How severe is CVE-2015-1779?

CVE-2015-1779 has been rated HIGH with a CVSS base score of 8.6/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2015-1779?

Check the references section above for vendor advisories and patch information. Affected products include: Qemu Qemu, Canonical Ubuntu Linux, Debian Debian Linux, Fedoraproject Fedora, Redhat Enterprise Linux Eus.

Vulnerability Description

The VNC websocket frame decoder in QEMU allows remote attackers to cause a denial of service (memory and CPU consumption) via a large (1) websocket payload or (2) HTTP headers section.

CVSS Score

8.6

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Qemu	Qemu	<= 2.2.1
Canonical	Ubuntu Linux	12.04
Debian	Debian Linux	7.0
Fedoraproject	Fedora	21
Redhat	Enterprise Linux Eus	7.1
Redhat	Enterprise Linux Server	7.0
Redhat	Enterprise Linux Server Aus	7.3
Redhat	Enterprise Linux Server Tus	7.3
Redhat	Enterprise Linux Workstation	7.0
Redhat	Virtualization	3.0
Redhat	Enterprise Linux	7.0
Oracle	Linux	7

Related Weaknesses (CWE)

CWE-400

References

http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154656.htmlThird Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155196.htmlThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00033.htmlBroken Link
http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00042.htmlBroken Link
http://rhn.redhat.com/errata/RHSA-2015-1931.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-1943.htmlThird Party Advisory
http://www.debian.org/security/2015/dsa-3259Third Party Advisory
http://www.openwall.com/lists/oss-security/2015/03/24/9Mailing ListThird Party Advisory
http://www.openwall.com/lists/oss-security/2015/04/09/6Mailing ListThird Party Advisory
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.hThird Party Advisory
http://www.securityfocus.com/bid/73303Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1033975Third Party AdvisoryVDB Entry
http://www.ubuntu.com/usn/USN-2608-1Third Party Advisory
https://lists.gnu.org/archive/html/qemu-devel/2015-03/msg04894.htmlMailing ListThird Party Advisory
https://lists.gnu.org/archive/html/qemu-devel/2015-03/msg04895.htmlMailing ListPatchThird Party Advisory

FAQ

What is CVE-2015-1779?

CVE-2015-1779 is a vulnerability with a CVSS score of 8.6 (HIGH). The VNC websocket frame decoder in QEMU allows remote attackers to cause a denial of service (memory and CPU consumption) via a large (1) websocket payload or (2) HTTP headers section.

How severe is CVE-2015-1779?

CVE-2015-1779 has been rated HIGH with a CVSS base score of 8.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-1779?

Check the references section above for vendor advisories and patch information. Affected products include: Qemu Qemu, Canonical Ubuntu Linux, Debian Debian Linux, Fedoraproject Fedora, Redhat Enterprise Linux Eus.