What is CVE-2015-1779?

CVE-2015-1779 is a high-severity vulnerability in Oracle Linux, classified under Uncontrolled Resource Consumption. CVSS score: 8.6/10. Published 2016-01-12.

How severe is CVE-2015-1779?

High severity. CVSS v3 base score is 8.6 out of 10.

Is CVE-2015-1779 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Resource exhaustion in Oracle Linux

CVE-2015-1779

The VNC websocket frame decoder in QEMU allows remote attackers to cause a denial of service (memory and CPU consumption) via a large (1) websocket payload or (2) HTTP headers section.

Vulnerability class: DoS (Denial of Service)

EPSS: 0.056 (90.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.6 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H.

Affected products

Oracle Linux — versions 7
Qemu — versions 2.3.0
Canonical Ubuntu_linux — versions 12.04, 14.04, 14.10
Debian Debian_linux — versions 7.0, 8.0
Fedoraproject Fedora — versions 21, 22
Redhat Enterprise_linux — versions 7.0
Redhat Enterprise_linux_eus — versions 7.1, 7.2, 7.3
Redhat Enterprise_linux_server — versions 7.0
Redhat Enterprise_linux_server_aus — versions 7.3, 7.4, 7.6
Redhat Enterprise_linux_server_tus — versions 7.3, 7.6, 7.7

Weakness classification (CWE)

CWE-400 — Uncontrolled Resource Consumption

Public proof-of-concept exploits

References

SUSE-SU-2015:0870 (vendor-advisory, x_refsource_SUSE, Broken Link)
[Qemu-devel] 20150323 [PATCH 1/2] CVE-2015-1779: incrementally decode websocket frames (mailing-list, x_refsource_MLIST, Patch, Mailing List, Third Party Advisory)
FEDORA-2015-5541 (x_refsource_FEDORA, vendor-advisory, Third Party Advisory)
DSA-3259 (vendor-advisory, Third Party Advisory, x_refsource_DEBIAN)
[oss-security] 20150409 Re: CVE-2015-1779 qemu: vnc: insufficient resource limiting in VNC websockets decoder (mailing-list, x_refsource_MLIST, Mailing List, Third Party Advisory)
SUSE-SU-2015:0896 (vendor-advisory, x_refsource_SUSE, Broken Link)
FEDORA-2015-5482 (x_refsource_FEDORA, vendor-advisory, Third Party Advisory)
[Qemu-devel] 20150323 [PATCH 0/2] CVE-2015-1779: fix denial of service in VNC websockets (mailing-list, x_refsource_MLIST, Mailing List, Third Party Advisory)
RHSA-2015:1931 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
[oss-security] 20150324 CVE-2015-1779 qemu: vnc: insufficient resource limiting in VNC websockets decoder (mailing-list, x_refsource_MLIST, Mailing List, Third Party Advisory)

Frequently asked questions

What is CVE-2015-1779?: CVE-2015-1779 is a high-severity vulnerability in Oracle Linux, classified under Uncontrolled Resource Consumption. CVSS score: 8.6/10. Published 2016-01-12.
How severe is CVE-2015-1779?: High severity. CVSS v3 base score is 8.6 out of 10.
Is CVE-2015-1779 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.