Описание
Multiple buffer overflows in the ssd0323_load function in hw/display/ssd0323.c in QEMU before 1.7.2 allow remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via crafted (1) cmd_len, (2) row, or (3) col values; (4) row_start and row_end values; or (5) col_star and col_end values in a savevm image.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.1+dfsg-2ubuntu1 |
| esm-infra-legacy/trusty | released | 2.0.0+dfsg-2ubuntu1.3 |
| lucid | DNE | |
| precise | DNE | |
| quantal | DNE | |
| saucy | ignored | end of life |
| trusty | released | 2.0.0+dfsg-2ubuntu1.3 |
| trusty/esm | released | 2.0.0+dfsg-2ubuntu1.3 |
| upstream | needed |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| lucid | released | 0.12.3+noroms-0ubuntu9.24 |
| precise | released | 1.0+noroms-0ubuntu14.17 |
| quantal | ignored | end of life |
| saucy | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed |
Показывать по
7.5 High
CVSS2
Связанные уязвимости
Multiple buffer overflows in the ssd0323_load function in hw/display/ssd0323.c in QEMU before 1.7.2 allow remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via crafted (1) cmd_len, (2) row, or (3) col values; (4) row_start and row_end values; or (5) col_star and col_end values in a savevm image.
Multiple buffer overflows in the ssd0323_load function in hw/display/ssd0323.c in QEMU before 1.7.2 allow remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via crafted (1) cmd_len, (2) row, or (3) col values; (4) row_start and row_end values; or (5) col_star and col_end values in a savevm image.
Multiple buffer overflows in the ssd0323_load function in hw/display/s ...
Multiple buffer overflows in the ssd0323_load function in hw/display/ssd0323.c in QEMU before 1.7.2 allow remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via crafted (1) cmd_len, (2) row, or (3) col values; (4) row_start and row_end values; or (5) col_star and col_end values in a savevm image.
7.5 High
CVSS2