Lucene search
Ubuntu.comUB:CVE-2014-5263HistoryAug 26, 2014 - 12:00 a.m.
CVE-2014-5263
2014-08-2600:00:00
ubuntu.com
ubuntu.com
10
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.006 Low
EPSS
Percentile
77.5%
vmstate_xhci_event in hw/usb/hcd-xhci.c in QEMU 1.6.0 does not terminate
the list with the VMSTATE_END_OF_LIST macro, which allows attackers to
cause a denial of service (out-of-bounds access, infinite loop, and memory
corruption) and possibly gain privileges via unspecified vectors.
Notes
| Author | Note |
|---|---|
| mdeslaur | only 1.6.x and higher |
Related
prion
prion
Memory corruption
2014-08-26 14:55:00
debiancve
debiancve
CVE-2014-5263
2014-08-26 14:55:00
cve
cve
CVE-2014-5263
2014-08-26 14:55:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0467)
2022-01-28 00:00:00
Gentoo Security Advisory GLSA 201412-01
2015-09-29 00:00:00
Ubuntu: Security Advisory (USN-2409-1)
2014-11-14 00:00:00
mageia
mageia
Updated qemu packages fix security vulnerabilities
2014-11-21 15:44:16
nessus
nessus
Ubuntu 14.04 LTS : QEMU vulnerabilities (USN-2409-1)
2014-11-14 00:00:00
GLSA-201412-01 : QEMU: Multiple Vulnerabilities
2014-12-09 00:00:00
Mandriva Linux Security Advisory : qemu (MDVSA-2014:220)
2014-11-23 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2014-11-13 00:00:00
gentoo
gentoo
QEMU: Multiple Vulnerabilities
2014-12-08 00:00:00
oraclelinux
oraclelinux
qemu-kvm security, bug fix, and enhancement update
2015-03-11 00:00:00
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.006 Low
EPSS
Percentile
77.5%
Related for UB:CVE-2014-5263