CVE-2012-3515
EPSS 0.10%xen-qemu-dm-4.0 - multiple
Published: 11/23/2012Modified: 4/28/2026
Description
Qemu, as used in Xen 4.0, 4.1 and possibly other products, when emulating certain devices with a virtual console backend, allows local OS guest users to gain privileges via a crafted escape VT100 sequence that triggers the overwrite of a "device model's address space."
Affected packages (3)
- Debian/qemufrom 0, < 1.1.2+dfsg-1
- Debian/xenfrom 0, < 4.1.3-2
- Debian/xen-qemu-dm-4.0from 0, < 4.0.1-2+squeeze2