The pit_ioport_read in i8254.c in the Linux kernel before 2.6.33 and QEMU before 2.3.1 does not distinguish between read lengths and write lengths, which might allow guest OS users to execute arbitrary code on the host OS by triggering use of an invalid index.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2015-08-31T10:00:00

Updated: 2024-08-06T05:39:31.960Z

Reserved: 2015-04-10T00:00:00

Link: CVE-2015-3214

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2015-08-31T10:59:07.580

Modified: 2024-11-21T02:28:55.273

Link: CVE-2015-3214

cve-icon Redhat

Severity : Moderate

Publid Date: 2015-06-16T00:00:00Z

Links: CVE-2015-3214 - Bugzilla