vulnerability

Ubuntu: (Multiple Advisories) (CVE-2015-8743): QEMU vulnerabilities

Severity
4
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:N)
Published
Feb 3, 2016
Added
Feb 3, 2016
Modified
Mar 27, 2026

Description

QEMU (aka Quick Emulator) built with the NE2000 device emulation support is vulnerable to an OOB r/w access issue. It could occur while performing 'ioport' r/w operations. A privileged (CAP_SYS_RAWIO) user/process could use this flaw to leak or corrupt QEMU memory bytes.

Solutions

ubuntu-upgrade-qemu-kvmubuntu-upgrade-qemu-systemubuntu-upgrade-qemu-system-aarch64ubuntu-upgrade-qemu-system-armubuntu-upgrade-qemu-system-mipsubuntu-upgrade-qemu-system-miscubuntu-upgrade-qemu-system-ppcubuntu-upgrade-qemu-system-sparcubuntu-upgrade-qemu-system-x86

References

    Title
    Rapid7 Labs

    2026 Global Threat Landscape Report

    The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.