2014-11-04 22:55:25 2017-11-04 02:29:00

Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service (crash) via a large L2 table in a QCOW version 1 image.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL
QEMU 1.0 release candidate 4 QEMU 1.0 release candidate 3 QEMU 1.0 release candidate 2 QEMU 1.0 release candidate 1 QEMU 1.0 QEMU 0.15.2 QEMU 0.15.1 QEMU 0.15.0 release candidate 2 QEMU 0.15.0 release candidate 1 QEMU 0.14.1 QEMU 0.14.0 release candidate 2 QEMU 0.14.0 release candidate 1 QEMU 0.14.0 release candidate 0 QEMU 0.14.0 QEMU 0.13.0 release candidate 1 QEMU 0.13.0 release candidate 0 QEMU 0.13.0 QEMU 0.12.5 QEMU 0.12.4 QEMU 0.12.3 QEMU 0.12.2 QEMU 0.12.1 QEMU 0.12.0 release candidate 2 QEMU 0.12.0 release candidate 1 QEMU 0.12.0 QEMU 0.11.1 QEMU 0.11.0-rc2 QEMU 0.11.0-rc1 QEMU 0.11.0-rc0 QEMU 0.11.0 release candidate 2 QEMU 0.11.0 release candidate 1 QEMU 0.11.0-rc0 QEMU 0.11.0 QEMU 0.10.6 QEMU 0.10.5 QEMU 0.10.4 QEMU 0.10.3 QEMU 0.10.2 QEMU 0.10.1 QEMU 0.10.0 QEMU 0.9.1-5 QEMU 0.9.1 QEMU 0.9.0 QEMU 0.8.2 QEMU 0.8.1 QEMU 0.8.0 QEMU 0.7.2 QEMU 0.7.1 QEMU 0.7.0 QEMU 0.6.1 QEMU 0.6.0 QEMU 0.5.5 QEMU 0.5.4 QEMU 0.5.3 QEMU 0.5.2 QEMU 0.5.1 QEMU 0.5.0 QEMU 0.4.3 QEMU 0.4.2 QEMU 0.4.1 QEMU 0.4 QEMU 0.3 QEMU 0.2 QEMU 0.1.6 QEMU 0.1.5 QEMU 0.1.4 QEMU 0.1.3 QEMU 0.1.2 QEMU 0.1.1 QEMU 0.1 QEMU 1.0.1 QEMU 1.1 QEMU 1.1 release candidate 1 QEMU 1.1 release candidate 2 QEMU 1.1 release candidate 3 QEMU 1.1 release candidate 4 QEMU 1.4.1 QEMU 1.4.2 QEMU 1.5.0 QEMU 1.5.0 release candidate 1 QEMU 1.5.0 release candidate 2 QEMU 1.5.0 release candidate 3 QEMU 1.5.1 QEMU 1.5.2 QEMU 1.5.3 QEMU 1.6.0 QEMU 1.6.0 release candidate 1 QEMU 1.6.0 release candidate 2 QEMU 1.6.0 release candidate 3 QEMU 1.6.1 QEMU 1.6.2 QEMU 1.7.1