Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-5263HistoryAug 26, 2014 - 2:55 p.m.
CVE-2014-5263
2014-08-2614:55:00
Debian Security Bug Tracker
security-tracker.debian.org
7
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.006 Low
EPSS
Percentile
77.5%
vmstate_xhci_event in hw/usb/hcd-xhci.c in QEMU 1.6.0 does not terminate the list with the VMSTATE_END_OF_LIST macro, which allows attackers to cause a denial of service (out-of-bounds access, infinite loop, and memory corruption) and possibly gain privileges via unspecified vectors.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | qemu | < 2.1+dfsg-1 | qemu_2.1+dfsg-1_all.deb |
| Debian | 11 | all | qemu | < 2.1+dfsg-1 | qemu_2.1+dfsg-1_all.deb |
| Debian | 10 | all | qemu | < 2.1+dfsg-1 | qemu_2.1+dfsg-1_all.deb |
| Debian | 999 | all | qemu | < 2.1+dfsg-1 | qemu_2.1+dfsg-1_all.deb |
| Debian | 13 | all | qemu | < 2.1+dfsg-1 | qemu_2.1+dfsg-1_all.deb |
Related
prion
prion
Memory corruption
2014-08-26 14:55:00
ubuntucve
ubuntucve
CVE-2014-5263
2014-08-26 00:00:00
cve
cve
CVE-2014-5263
2014-08-26 14:55:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0467)
2022-01-28 00:00:00
Ubuntu: Security Advisory (USN-2409-1)
2014-11-14 00:00:00
Gentoo Security Advisory GLSA 201412-01
2015-09-29 00:00:00
mageia
mageia
Updated qemu packages fix security vulnerabilities
2014-11-21 15:44:16
nessus
nessus
Ubuntu 14.04 LTS : QEMU vulnerabilities (USN-2409-1)
2014-11-14 00:00:00
GLSA-201412-01 : QEMU: Multiple Vulnerabilities
2014-12-09 00:00:00
Mandriva Linux Security Advisory : qemu (MDVSA-2014:220)
2014-11-23 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2014-11-13 00:00:00
gentoo
gentoo
QEMU: Multiple Vulnerabilities
2014-12-08 00:00:00
oraclelinux
oraclelinux
qemu-kvm security, bug fix, and enhancement update
2015-03-11 00:00:00
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.006 Low
EPSS
Percentile
77.5%
Related for DEBIANCVE:CVE-2014-5263