CVE-2013-4535

Опубликовано: 11 фев. 2020

Источник: ubuntu

Приоритет: low

CVSS2: 7.2

CVSS3: 8.8

Описание

The virtqueue_map_sg function in hw/virtio/virtio.c in QEMU before 1.7.2 allows remote attackers to execute arbitrary files via a crafted savevm image, related to virtio-block or virtio-serial read.

Релиз	Статус	Примечание
devel	not-affected	2.1+dfsg-2ubuntu1
esm-infra-legacy/trusty	released	2.0.0+dfsg-2ubuntu1.3
lucid	DNE
precise	DNE
quantal	DNE
saucy	ignored	end of life
trusty	released	2.0.0+dfsg-2ubuntu1.3
trusty/esm	released	2.0.0+dfsg-2ubuntu1.3
upstream	needed

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	not-affected	code not present
precise	released	1.0+noroms-0ubuntu14.17
quantal	ignored	end of life
saucy	DNE
trusty	DNE
trusty/esm	DNE
upstream	needed

Показывать по

Ссылки на источники

7.2 High

CVSS2

8.8 High

CVSS3

Связанные уязвимости

CVE-2013-4535

redhat

около 12 лет назад

The virtqueue_map_sg function in hw/virtio/virtio.c in QEMU before 1.7.2 allows remote attackers to execute arbitrary files via a crafted savevm image, related to virtio-block or virtio-serial read.

CVE-2013-4535

CVSS3: 8.8

nvd

почти 6 лет назад

The virtqueue_map_sg function in hw/virtio/virtio.c in QEMU before 1.7.2 allows remote attackers to execute arbitrary files via a crafted savevm image, related to virtio-block or virtio-serial read.

CVE-2013-4535

CVSS3: 8.8

debian

почти 6 лет назад

The virtqueue_map_sg function in hw/virtio/virtio.c in QEMU before 1.7 ...

GHSA-4g6m-vjr9-mv9r

github

больше 3 лет назад

The virtqueue_map_sg function in hw/virtio/virtio.c in QEMU before 1.7.2 allows remote attackers to execute arbitrary files via a crafted savevm image, related to virtio-block or virtio-serial read.

ELSA-2014-0743

oracle-oval

больше 11 лет назад

ELSA-2014-0743: qemu-kvm security and bug fix update (MODERATE)

7.2 High

CVSS2

8.8 High

CVSS3

CVE-2013-4535

Описание

Пакет qemu

Пакет qemu-kvm

Ссылки на источники

Связанные уязвимости