3 matches found
SUSE CVE-2014-0223
Integer overflow in the qcowopen function in block/qcow.c in QEMU before 1.7.2 allows local users to cause a denial of service crash and possibly execute arbitrary code via a large image size, which triggers a buffer overflow or out-of-bounds read...
DEBIAN-CVE-2014-0222
Integer overflow in the qcowopen function in block/qcow.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service crash via a large L2 table in a QCOW version 1 image...
PT-2014-3545 · Qemu +5 · Qemu +5
Name of the Vulnerable Software and Affected Versions: QEMU versions prior to 1.7.2 Description: The issue is caused by an integer overflow in the qcow open function, which can lead to a denial of service crash and potentially allow the execution of arbitrary code. This occurs when a large image...