4 matches found
CVE-2014-0144
CVE-2014-0144 affects QEMU before 2.0.0: block drivers for CLOOP, QCOW2 v2, and other image formats are vulnerable due to missing input validations that can cause memory corruption, integer/buffer overflows, or crashes. An attacker could potentially execute arbitrary code on the host with QEMU pr...
CVE-2014-0147
CVE-2014-0147 affects QEMU before 1.6.2, where a logic error with signed data types during QCOW2 snapshot creation (impacting QCOW2 and disk image formats used by Bochs) can cause a crash by incorrectly calling update_refcount(). Root cause is a signed data type/logical error in snapshot handling...
CVE-2014-0148
CVE-2014-0148 affects QEMU before 2.0, specifically the block driver for Hyper-V VHDX images. The issue arises from missing bounds checks for block_size and logical_sector_size when deriving BAT-related fields, enabling a local user who can modify a disk image to crash the QEMU guest (DoS). Publi...
CVE-2015-5694
Technical details for CVE-2015-5694 are not publicly available in the provided documents. Monitor for updates.