Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-3h4r-h95r-47jc

Опубликовано: 17 мая 2022
Источник: github
Github: Не прошло ревью

Описание

Integer signedness error in the virtio_net_load function in hw/net/virtio-net.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers a buffer overflow.

Integer signedness error in the virtio_net_load function in hw/net/virtio-net.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers a buffer overflow.

Ссылки

EPSS

Процентиль: 86%
0.03127
Низкий

CVE ID

CVE-2013-4148

Связанные уязвимости

ubuntu логотип

CVE-2013-4148

ubuntu
почти 11 лет назад

Integer signedness error in the virtio_net_load function in hw/net/virtio-net.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers a buffer overflow.

redhat логотип

CVE-2013-4148

redhat
больше 11 лет назад

Integer signedness error in the virtio_net_load function in hw/net/virtio-net.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers a buffer overflow.

nvd логотип

CVE-2013-4148

nvd
почти 11 лет назад

Integer signedness error in the virtio_net_load function in hw/net/virtio-net.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers a buffer overflow.

debian логотип

CVE-2013-4148

debian
почти 11 лет назад

Integer signedness error in the virtio_net_load function in hw/net/vir ...

oracle-oval логотип

ELSA-2014-0743

oracle-oval
около 11 лет назад

ELSA-2014-0743: qemu-kvm security and bug fix update (MODERATE)

EPSS

Процентиль: 86%
0.03127
Низкий

CVE ID

CVE-2013-4148