Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0150

Overview

Vulnerability Score 4.9 4.9
CVE Id CVE-2014-0150
Last Modified 10 May 2014 12:01:39
Published 18 Apr 2014 10:55:25
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector ADJACENT_NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2014-0150

Summary

Integer overflow in the virtio_net_handle_mac function in hw/net/virtio-net.c in QEMU 2.0 and earlier allows local guest users to execute arbitrary code via a MAC addresses table update request, which triggers a heap-based buffer overflow.

Vulnerable Systems

Operating System

  • Redhat Enterprise Linux 6

Application

  • Qemu 0.1

  • Qemu 0.1.1

  • Qemu 0.1.2

  • Qemu 0.1.3

  • Qemu 0.1.4

  • Qemu 0.1.5

  • Qemu 0.1.6

  • Qemu 0.10.0

  • Qemu 0.10.1

  • Qemu 0.10.2

  • Qemu 0.10.3

  • Qemu 0.10.4

  • Qemu 0.10.5

  • Qemu 0.10.6

  • Qemu 0.11.0

  • Qemu 0.11.0-rc0

  • Qemu 0.11.0-rc1

  • Qemu 0.11.0-rc2

  • Qemu 0.11.1

  • Qemu 0.12.0

  • Qemu 0.12.1

  • Qemu 0.12.2

  • Qemu 0.12.3

  • Qemu 0.12.4

  • Qemu 0.12.5

  • Qemu 0.13.0

  • Qemu 0.14.0

  • Qemu 0.14.1

  • Qemu 0.15.0

  • Qemu 0.15.1

  • Qemu 0.15.2

  • Qemu 0.2

  • Qemu 0.3

  • Qemu 0.4

  • Qemu 0.4.1

  • Qemu 0.4.2

  • Qemu 0.4.3

  • Qemu 0.5.0

  • Qemu 0.5.1

  • Qemu 0.5.2

  • Qemu 0.5.3

  • Qemu 0.5.4

  • Qemu 0.5.5

  • Qemu 0.6.0

  • Qemu 0.6.1

  • Qemu 0.7.0

  • Qemu 0.7.1

  • Qemu 0.7.2

  • Qemu 0.8.0

  • Qemu 0.8.1

  • Qemu 0.8.2

  • Qemu 0.9.0

  • Qemu 0.9.1

  • Qemu 0.9.1-5

  • Qemu 1.0

  • Qemu 1.0.1

  • Qemu 1.1

  • Qemu 1.4.1

  • Qemu 1.4.2

  • Qemu 1.5.0

  • Qemu 1.5.1

  • Qemu 1.5.2

  • Qemu 1.5.3

  • Qemu 1.6.0

  • Qemu 1.6.1

  • Qemu 1.6.2

  • Qemu 1.7.1

  • Qemu 2.0

  • Qemu 2.0.0


References

MLIST - [Qemu-devel] 20140411 [PATCH for-2.0] virtio-net: fix guest-triggerable buffer overrun

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=1078846

SECUNIA - 57878

MLIST - [Qemu-devel] 20140411 Re: [PATCH for-2.0] virtio-net: fix guest-triggerable buffer overrun

UBUNTU - USN-2182-1

SECUNIA - 58191


Last Updated: 27 May 2016 11:05:00