CVE-2013-4151

Опубликовано: 04 нояб. 2014

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 7.5

Описание

The virtio_load function in virtio/virtio.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers an out-of-bounds write.

Релиз	Статус	Примечание
devel	not-affected	2.1+dfsg-2ubuntu1
esm-infra-legacy/trusty	not-affected	2.0.0+dfsg-2ubuntu1.3
lucid	DNE
precise	DNE
quantal	DNE
saucy	ignored	end of life
trusty	released	2.0.0+dfsg-2ubuntu1.3
trusty/esm	not-affected	2.0.0+dfsg-2ubuntu1.3
upstream	needed

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	released	0.12.3+noroms-0ubuntu9.24
precise	released	1.0+noroms-0ubuntu14.17
quantal	ignored	end of life
saucy	DNE
trusty	DNE
trusty/esm	DNE
upstream	needed

Показывать по

Ссылки на источники

EPSS

Процентиль: 80%

0.01385

Низкий

7.5 High

CVSS2

Связанные уязвимости

CVE-2013-4151

redhat

больше 11 лет назад

The virtio_load function in virtio/virtio.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers an out-of-bounds write.

CVE-2013-4151

nvd

почти 11 лет назад

The virtio_load function in virtio/virtio.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers an out-of-bounds write.

CVE-2013-4151

debian

почти 11 лет назад

The virtio_load function in virtio/virtio.c in QEMU 1.x before 1.7.2 a ...

GHSA-rxxv-p4v6-jrg6

github

около 3 лет назад

The virtio_load function in virtio/virtio.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers an out-of-bounds write.

ELSA-2014-0743

oracle-oval

около 11 лет назад

ELSA-2014-0743: qemu-kvm security and bug fix update (MODERATE)

EPSS

Процентиль: 80%

0.01385

Низкий

7.5 High

CVSS2

CVE-2013-4151

Описание

Пакет qemu

Пакет qemu-kvm

Ссылки на источники

Связанные уязвимости