Wind River Support Network


LIN7-3568 : Security Advisory - qemu - CVE-2014-9718

Created: May 3, 2015    Updated: Sep 8, 2018
Resolved Date: May 14, 2015
Found In Version:
Fix Version:
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Userspace


The (1) BMDMA and (2) AHCI HBA interfaces in the IDE functionality in QEMU 1.0 through 2.1.3 have multiple interpretations of a function's return value, which allows guest OS users to cause a host OS denial of service (memory consumption or infinite loop, and system crash) via a PRDT with zero complete sectors, related to the bmdma_prepare_buf and ahci_dma_prepare_buf functions.

Other Downloads


Live chat