exploitDog

CVE-2014-0142

Опубликовано: 26 мар. 2014

Источник: redhat

CVSS2: 4

Описание

QEMU, possibly before 2.0.0, allows local users to cause a denial of service (divide-by-zero error and crash) via a zero value in the (1) tracks field to the seek_to_sector function in block/parallels.c or (2) extent_size field in the bochs function in block/bochs.c.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	kvm	Will not fix
Red Hat Enterprise Linux 7	qemu-kvm	Not affected
Red Hat Enterprise Linux OpenStack Platform 5 (Icehouse)	qemu-kvm-rhev	Affected
OpenStack 3 for RHEL 6	qemu-kvm-rhev	Fixed	RHSA-2014:0435	24.04.2014
OpenStack 4 for RHEL 6	qemu-kvm-rhev	Fixed	RHSA-2014:0434	24.04.2014
Red Hat Enterprise Linux 6	qemu-kvm	Fixed	RHSA-2014:0420	22.04.2014
RHEV 3.X Hypervisor and Agents for RHEL-6	qemu-kvm-rhev	Fixed	RHSA-2014:0421	22.04.2014
RHEV 3.X Hypervisor and Agents for RHEL-6	rhev-hypervisor6	Fixed	RHSA-2014:0674	09.06.2014

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-369

https://bugzilla.redhat.com/show_bug.cgi?id=1078201qemu: crash by possible division by zero

4 Medium

CVSS2

Связанные уязвимости

CVE-2014-0142

CVSS3: 5.5

ubuntu

около 8 лет назад

QEMU, possibly before 2.0.0, allows local users to cause a denial of service (divide-by-zero error and crash) via a zero value in the (1) tracks field to the seek_to_sector function in block/parallels.c or (2) extent_size field in the bochs function in block/bochs.c.

CVE-2014-0142

CVSS3: 5.5

nvd

около 8 лет назад

QEMU, possibly before 2.0.0, allows local users to cause a denial of service (divide-by-zero error and crash) via a zero value in the (1) tracks field to the seek_to_sector function in block/parallels.c or (2) extent_size field in the bochs function in block/bochs.c.

CVE-2014-0142

CVSS3: 5.5

debian

около 8 лет назад

QEMU, possibly before 2.0.0, allows local users to cause a denial of s ...

GHSA-cgcg-9vhg-7fq9

CVSS3: 5.5

github

больше 3 лет назад

QEMU, possibly before 2.0.0, allows local users to cause a denial of service (divide-by-zero error and crash) via a zero value in the (1) tracks field to the seek_to_sector function in block/parallels.c or (2) extent_size field in the bochs function in block/bochs.c.

ELSA-2014-0420

oracle-oval

больше 11 лет назад

ELSA-2014-0420: qemu-kvm security update (MODERATE)

4 Medium

CVSS2