Oval Definition:oval:com.ubuntu.precise:def:20152756000
Revision Date:2015-04-01Version:1
Title:CVE-2015-2756 on Ubuntu 12.04 LTS (precise) - low.
Description:QEMU, as used in Xen 3.3.x through 4.5.x, does not properly restrict access to PCI command registers, which might allow local HVM guest users to cause a denial of service (non-maskable interrupt and host crash) by disabling the (1) memory or (2) I/O decoding for a PCI Express device and then accessing the device, which triggers an Unsupported Request (UR) response.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2015-2756
Platform(s):Ubuntu 12.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 12.04 LTS (precise) is installed.
  • AND Package Information
  • NOT While related to the CVE in some way, the 'qemu-kvm' package in precise is not affected (note: 'code not present').
  • OR The 'xen' package in precise was vulnerable but has been fixed (note: '4.1.6.1-0ubuntu0.12.04.6').
  • BACK