The slirp_smb function in net/slirp.c in QEMU 2.3.0 and earlier creates temporary files with predictable names, which allows local users to cause a denial of service (instantiation failure) by creating /tmp/qemu-smb.*-* files before the program.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2015-08-26T19:00:00

Updated: 2024-08-06T06:04:02.725Z

Reserved: 2015-05-19T00:00:00

Link: CVE-2015-4037

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2015-08-26T19:59:05.737

Modified: 2024-11-21T02:30:19.613

Link: CVE-2015-4037

cve-icon Redhat

Severity : Moderate

Publid Date: 2015-05-13T00:00:00Z

Links: CVE-2015-4037 - Bugzilla