Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2014-0143
HistoryMar 26, 2014 - 12:00 a.m.

CVE-2014-0143

2014-03-2600:00:00
ubuntu.com
ubuntu.com
11

0.0004 Low

EPSS

Percentile

5.2%

JSON

Multiple integer overflows in the block drivers in QEMU, possibly before
2.0.0, allow local users to cause a denial of service (crash) via a crafted
catalog size in (1) the parallels_open function in block/parallels.c or (2)
bochs_open function in bochs.c, a large L1 table in the (3)
qcow2_snapshot_load_tmp in qcow2-snapshot.c or (4) qcow2_grow_l1_table
function in qcow2-cluster.c, (5) a large request in the
bdrv_check_byte_request function in block.c and other block drivers, (6)
crafted cluster indexes in the get_refcount function in qcow2-refcount.c,
or (7) a large number of blocks in the cloop_open function in cloop.c,
which trigger buffer overflows, memory corruption, large memory allocations
and out-of-bounds read and writes.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchqemu-kvm< 0.12.3+noroms-0ubuntu9.24UNKNOWN
ubuntu12.04noarchqemu-kvm< 1.0+noroms-0ubuntu14.17UNKNOWN

Related

cvelist 1
cve 1
prion 1
debiancve 1
nessus 14
veracode 7
openvas 16
redhat 5
oraclelinux 1
centos 1
debian 2
suse 1
fedora 1
securityvulns 2
gentoo 1
ubuntu 1
mageia 1
cvelist
cvelist
CVE-2014-0143
2017-08-10 15:00:00
cve
cve
CVE-2014-0143
2017-08-10 15:29:00
prion
prion
Integer overflow
2017-08-10 15:29:00
debiancve
debiancve
CVE-2014-0143
2017-08-10 15:29:00
nessus
nessus
Oracle Linux 6 : qemu-kvm (ELSA-2014-0420)
2014-04-23 00:00:00
RHEL 6 : qemu-kvm (RHSA-2014:0420)
2014-04-23 00:00:00
Scientific Linux Security Update : qemu-kvm on SL6.x i386/x86_64 (20140422)
2014-04-23 00:00:00
veracode
veracode
Buffer Overflow
2019-05-02 04:57:36
Denial Of Service (DoS)
2019-05-02 04:57:36
Denial Of Service (DoS)
2019-05-02 04:57:36
openvas
openvas
CentOS Update for qemu-guest-agent CESA-2014:0420 centos6
2014-05-02 00:00:00
Oracle: Security Advisory (ELSA-2014-0420)
2015-10-06 00:00:00
CentOS Update for qemu-guest-agent CESA-2014:0420 centos6
2014-05-02 00:00:00
redhat
redhat
(RHSA-2014:0420) Moderate: qemu-kvm security update
2014-04-22 00:00:00
(RHSA-2014:0434) Moderate: qemu-kvm-rhev security update
2014-04-24 00:00:00
(RHSA-2014:0435) Moderate: qemu-kvm-rhev security update
2014-04-24 00:00:00
oraclelinux
oraclelinux
qemu-kvm security update
2014-04-22 00:00:00
centos
centos
qemu security update
2014-04-22 19:33:34
debian
debian
[SECURITY] [DSA 3045-1] qemu security update
2014-10-04 19:28:01
[SECURITY] [DSA 3044-1] qemu-kvm security update
2014-10-04 19:27:21
suse
suse
Security update for kvm (important)
2014-05-08 19:04:16
fedora
fedora
[SECURITY] Fedora 20 Update: qemu-1.6.2-4.fc20
2014-05-01 22:27:28
securityvulns
securityvulns
[SECURITY] [DSA 3045-1] qemu security update
2014-10-13 00:00:00
qemu multiple security vulnerabilities
2014-12-08 00:00:00
gentoo
gentoo
QEMU: Multiple vulnerabilities
2014-08-30 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2014-09-08 00:00:00
mageia
mageia
Updated qemu packages fix multiple security vulnerabilities
2014-10-28 14:33:36

0.0004 Low

EPSS

Percentile

5.2%

JSON
Related for UB:CVE-2014-0143
cvelist1cve1prion1debiancve1nessus14veracode7openvas16redhat5oraclelinux1centos1debian2suse1fedora1securityvulns2gentoo1ubuntu1mageia1