Wind River Support Network

HomeDefectsLIN6-7285

Fixed

LIN6-7285 : Security Advisory - qemu - CVE-2014-0150

Created: Apr 29, 2014 Updated: Dec 3, 2018

Resolved Date: May 7, 2014

Found In Version: 6.0.0.7

Fix Version: 6.0.0.7

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

Integer overflow in the virtio_net_handle_mac function in hw/net/virtio-net.c in QEMU 2.0 and earlier allows local guest users to execute arbitrary code via a MAC addresses table update request, which triggers a heap-based buffer overflow.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0150

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38