Vulnerability Description
Integer overflow in the virtio_net_handle_mac function in hw/net/virtio-net.c in QEMU 2.0 and earlier allows local guest users to execute arbitrary code via a MAC addresses table update request, which triggers a heap-based buffer overflow.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qemu | Qemu | <= 2.0 |
| Redhat | Enterprise Linux | 6.0 |
Related Weaknesses (CWE)
References
- http://article.gmane.org/gmane.comp.emulators.qemu/266768
- http://secunia.com/advisories/57878Vendor Advisory
- http://secunia.com/advisories/58191
- http://thread.gmane.org/gmane.comp.emulators.qemu/266713Patch
- http://www.debian.org/security/2014/dsa-2909
- http://www.debian.org/security/2014/dsa-2910
- http://www.ubuntu.com/usn/USN-2182-1
- https://bugzilla.redhat.com/show_bug.cgi?id=1078846
- http://article.gmane.org/gmane.comp.emulators.qemu/266768
- http://secunia.com/advisories/57878Vendor Advisory
- http://secunia.com/advisories/58191
- http://thread.gmane.org/gmane.comp.emulators.qemu/266713Patch
- http://www.debian.org/security/2014/dsa-2909
- http://www.debian.org/security/2014/dsa-2910
- http://www.ubuntu.com/usn/USN-2182-1
FAQ
What is CVE-2014-0150?
CVE-2014-0150 is a vulnerability with a CVSS score of 4.9 (MEDIUM). Integer overflow in the virtio_net_handle_mac function in hw/net/virtio-net.c in QEMU 2.0 and earlier allows local guest users to execute arbitrary code via a MAC addresses table update request, which...
How severe is CVE-2014-0150?
CVE-2014-0150 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-0150?
Check the references section above for vendor advisories and patch information. Affected products include: Qemu Qemu, Redhat Enterprise Linux.