Wind River Support Network

HomeDefectsLIN6-9056

Fixed

LIN6-9056 : Security Advisory - qemu - CVE-2014-8106

Created: Dec 14, 2014 Updated: Dec 3, 2018

Resolved Date: Dec 30, 2014

Found In Version: 6.0.0.13

Fix Version: 6.0.0.17

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

Heap-based buffer overflow in the Cirrus VGA emulator (hw/display/cirrus_vga.c) in QEMU before 2.2.0 allows local guest users to execute arbitrary code via vectors related to blit regions. NOTE: this vulnerability exists because an incomplete fix for CVE-2007-1320.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8106

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38