vulnerability

Huawei EulerOS: CVE-2015-8613: qemu-kvm security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
2	(AV:L/AC:M/Au:N/C:N/I:N/A:P)	Apr 11, 2017	Apr 16, 2020	Apr 1, 2026

Severity

CVSS

(AV:L/AC:M/Au:N/C:N/I:N/A:P)

Published

Apr 11, 2017

Added

Apr 16, 2020

Modified

Apr 1, 2026

Description

Stack-based buffer overflow in the megasas_ctrl_get_info function in QEMU, when built with SCSI MegaRAID SAS HBA emulation support, allows local guest users to cause a denial of service (QEMU instance crash) via a crafted SCSI controller CTRL_GET_INFO command.

Solutions

huawei-euleros-2_0_sp3-upgrade-qemu-imghuawei-euleros-2_0_sp3-upgrade-qemu-kvmhuawei-euleros-2_0_sp3-upgrade-qemu-kvm-common

References

CVE-2015-8613
https://attackerkb.com/topics/CVE-2015-8613
CWE-787
EULEROS-EulerOS-SA-2020-1430
EUVD-EUVD-2015-8490
https://euvd.enisa.europa.eu/vulnerability/EUVD-2015-8490

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report