Wind River Support Network

HomeDefectsLIN6-8754

Fixed

LIN6-8754 : Security Advisory - qemu - CVE-2013-4542

Created: Nov 16, 2014 Updated: Dec 3, 2018

Resolved Date: Dec 30, 2014

Found In Version: 6.0.0.13

Fix Version: 6.0.0.17

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

The virtio_scsi_load_request function in hw/scsi/scsi-bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, which triggers an out-of-bounds array access.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4542

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38