Wind River Support Network

HomeDefectsLIN6-8761

Fixed

LIN6-8761 : Security Advisory - qemu - CVE-2013-4148

Created: Nov 16, 2014 Updated: Dec 3, 2018

Resolved Date: Dec 30, 2014

Found In Version: 6.0.0.13

Fix Version: 6.0.0.17

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

Integer signedness error in the virtio_net_load function in hw/net/virtio-net.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers a buffer overflow.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4148

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38