Wind River Support Network

HomeDefectsLIN6-7292

Fixed

LIN6-7292 : Security Advisory - qemu - CVE-2014-2894

Created: Apr 29, 2014 Updated: Dec 3, 2018

Resolved Date: May 7, 2014

Found In Version: 6.0.0.7

Fix Version: 6.0.0.7

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

Off-by-one error in the cmd_smart function in the smart self test in hw/ide/core.c in QEMU before 2.0 allows local users to have unspecified impact via a SMART EXECUTE OFFLINE command that triggers a buffer underflow and memory corruption.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2894

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38