Wind River Support Network

HomeDefectsOVP-1836
Fixed

OVP-1836 : Security Advisory - qemu - CVE-2014-0150

Created: Apr 29, 2014    Updated: Mar 11, 2016
Resolved Date: Sep 19, 2014
Found In Version: 5.0.1
Fix Version: 5.0.1.19,6.0.0.12
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Userspace

Description

Integer overflow in the virtio_net_handle_mac function in hw/net/virtio-net.c in QEMU 2.0 and earlier allows local guest users to execute arbitrary code via a MAC addresses table update request, which triggers a heap-based buffer overflow.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0150

Other Downloads

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube