CVE-2014-3461

Опубликовано: 04 нояб. 2014

Источник: ubuntu

Приоритет: low

CVSS2: 6.8

Описание

hw/usb/bus.c in QEMU 1.6.2 allows remote attackers to execute arbitrary code via crafted savevm data, which triggers a heap-based buffer overflow, related to "USB post load checks."

Релиз	Статус	Примечание
devel	not-affected	2.1+dfsg-2ubuntu1
esm-infra-legacy/trusty	released	2.0.0+dfsg-2ubuntu1.3
lucid	DNE
precise	DNE
quantal	DNE
saucy	ignored	end of life
trusty	released	2.0.0+dfsg-2ubuntu1.3
trusty/esm	released	2.0.0+dfsg-2ubuntu1.3
upstream	needed

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	not-affected	code not present
precise	released	1.0+noroms-0ubuntu14.17
quantal	ignored	end of life
saucy	DNE
trusty	DNE
trusty/esm	DNE
upstream	needed

Показывать по

Ссылки на источники

6.8 Medium

CVSS2

Связанные уязвимости

CVE-2014-3461

redhat

больше 11 лет назад

hw/usb/bus.c in QEMU 1.6.2 allows remote attackers to execute arbitrary code via crafted savevm data, which triggers a heap-based buffer overflow, related to "USB post load checks."

CVE-2014-3461

nvd

около 11 лет назад

hw/usb/bus.c in QEMU 1.6.2 allows remote attackers to execute arbitrary code via crafted savevm data, which triggers a heap-based buffer overflow, related to "USB post load checks."

CVE-2014-3461

debian

около 11 лет назад

hw/usb/bus.c in QEMU 1.6.2 allows remote attackers to execute arbitrar ...

GHSA-9mpf-qr4j-4fp9

github

больше 3 лет назад

hw/usb/bus.c in QEMU 1.6.2 allows remote attackers to execute arbitrary code via crafted savevm data, which triggers a heap-based buffer overflow, related to "USB post load checks."

ELSA-2014-0743

oracle-oval

больше 11 лет назад

ELSA-2014-0743: qemu-kvm security and bug fix update (MODERATE)

6.8 Medium

CVSS2

CVE-2014-3461

Описание

Пакет qemu

Пакет qemu-kvm

Ссылки на источники

Связанные уязвимости