CVE-2014-3689

Опубликовано: 14 окт. 2014

Источник: redhat

CVSS2: 4

EPSS Низкий

Описание

The vmware-vga driver (hw/display/vmware_vga.c) in QEMU allows local guest users to write to qemu memory locations and gain privileges via unspecified parameters related to rectangle handling.

Отчет

Not vulnerable. This issue does not affect the qemu packages as shipped with Red Hat Enterprise Linux 5, 6 and 7.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	kvm	Not affected
Red Hat Enterprise Linux 6	qemu-kvm	Not affected
Red Hat Enterprise Linux 7	qemu-kvm	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=1153035qemu: vmware_vga: insufficient parameter validation in rectangle functions

EPSS

Процентиль: 26%

0.0009

Низкий

4 Medium

CVSS2

Связанные уязвимости

CVE-2014-3689

ubuntu

около 11 лет назад

The vmware-vga driver (hw/display/vmware_vga.c) in QEMU allows local guest users to write to qemu memory locations and gain privileges via unspecified parameters related to rectangle handling.

CVE-2014-3689

nvd

около 11 лет назад

The vmware-vga driver (hw/display/vmware_vga.c) in QEMU allows local guest users to write to qemu memory locations and gain privileges via unspecified parameters related to rectangle handling.

CVE-2014-3689

debian

около 11 лет назад

The vmware-vga driver (hw/display/vmware_vga.c) in QEMU allows local g ...

GHSA-4563-6q26-9q79

github

больше 3 лет назад

The vmware-vga driver (hw/display/vmware_vga.c) in QEMU allows local guest users to write to qemu memory locations and gain privileges via unspecified parameters related to rectangle handling.

SUSE-SU-2021:14704-1

suse-cvrf

почти 5 лет назад

Security update for kvm

EPSS

Процентиль: 26%

0.0009

Низкий

4 Medium

CVSS2