Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-2894

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2014-2894
Last Modified 13 Nov 2014 10:03:30
Published 23 Apr 2014 11:55:05
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2014-2894

Summary

Off-by-one error in the cmd_smart function in the smart self test in hw/ide/core.c in QEMU before 2.0 allows local users to have unspecified impact via a SMART EXECUTE OFFLINE command that triggers a buffer underflow and memory corruption.

Vulnerable Systems

Application

  • Qemu 0.1

  • Qemu 0.1.1

  • Qemu 0.1.2

  • Qemu 0.1.3

  • Qemu 0.1.4

  • Qemu 0.1.5

  • Qemu 0.1.6

  • Qemu 0.10.0

  • Qemu 0.10.1

  • Qemu 0.10.2

  • Qemu 0.10.3

  • Qemu 0.10.4

  • Qemu 0.10.5

  • Qemu 0.10.6

  • Qemu 0.11.0

  • Qemu 0.11.0-rc0

  • Qemu 0.11.0-rc1

  • Qemu 0.11.0-rc2

  • Qemu 0.11.1

  • Qemu 0.12.0

  • Qemu 0.12.1

  • Qemu 0.12.2

  • Qemu 0.12.3

  • Qemu 0.12.4

  • Qemu 0.12.5

  • Qemu 0.13.0

  • Qemu 0.14.0

  • Qemu 0.14.1

  • Qemu 0.15.0

  • Qemu 0.15.1

  • Qemu 0.15.2

  • Qemu 0.2

  • Qemu 0.3

  • Qemu 0.4

  • Qemu 0.4.1

  • Qemu 0.4.2

  • Qemu 0.4.3

  • Qemu 0.5.0

  • Qemu 0.5.1

  • Qemu 0.5.2

  • Qemu 0.5.3

  • Qemu 0.5.4

  • Qemu 0.5.5

  • Qemu 0.6.0

  • Qemu 0.6.1

  • Qemu 0.7.0

  • Qemu 0.7.1

  • Qemu 0.7.2

  • Qemu 0.8.0

  • Qemu 0.8.1

  • Qemu 0.8.2

  • Qemu 0.9.0

  • Qemu 0.9.1

  • Qemu 0.9.1-5

  • Qemu 1.0

  • Qemu 1.0.1

  • Qemu 1.1

  • Qemu 1.1.1

  • Qemu 1.1.2

  • Qemu 1.2.0

  • Qemu 1.2.1

  • Qemu 1.2.2

  • Qemu 1.3.0

  • Qemu 1.3.1

  • Qemu 1.4.0

  • Qemu 1.4.1

  • Qemu 1.4.2

  • Qemu 1.5.0

  • Qemu 1.5.1

  • Qemu 1.5.2

  • Qemu 1.5.3

  • Qemu 1.6.0

  • Qemu 1.6.1

  • Qemu 1.6.2

  • Qemu 1.7.1


References

MLIST - [Qemu-devel] 20140414 Re: [PATCH for 2.0] ide: Correct improper smart self test c

MLIST - [Qemu-devel] 20140412 [PATCH for 2.0] ide: Correct improper smart self test c

BID - 66932

MLIST - [oss-security] 20140418 Re: CVE request Qemu: out of bounds buffer access, guest triggerable via IDE SMART

MLIST - [oss-security] 20140415 CVE request Qemu: out of bounds buffer access, guest triggerable via IDE SMART

SECUNIA - 57945

UBUNTU - USN-2182-1

SECUNIA - 58191

REDHAT - RHSA-2014:0744

REDHAT - RHSA-2014:0743


Last Updated: 27 May 2016 11:05:05