Buffer Overflow in QEMU's virtio-serial-bus.c Allows for Denial of Service

Buffer Overflow in QEMU's virtio-serial-bus.c Allows for Denial of Service

CVE-2015-5745 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Buffer overflow in the send_control_msg function in hw/char/virtio-serial-bus.c in QEMU before 2.4.0 allows guest users to cause a denial of service (QEMU process crash) via a crafted virtio control message.

Learn more about our User Device Pen Test.