CVE-2014-7840
Published: 14 November 2014
The host_from_stream_offset function in arch_init.c in QEMU, when loading RAM during migration, allows remote attackers to execute arbitrary code via a crafted (1) offset or (2) length value in savevm data.
Priority
Status
Package | Release | Status |
---|---|---|
qemu-kvm Launchpad, Ubuntu, Debian |
upstream |
Needs triage
|
lucid |
Not vulnerable
(code not present)
|
|
precise |
Released
(1.0+noroms-0ubuntu14.21)
|
|
trusty |
Does not exist
|
|
utopic |
Does not exist
|
|
qemu Launchpad, Ubuntu, Debian |
upstream |
Needs triage
|
lucid |
Does not exist
|
|
precise |
Does not exist
|
|
trusty |
Released
(2.0.0+dfsg-2ubuntu1.9)
|
|
utopic |
Released
(2.1+dfsg-4ubuntu6.3)
|
|
Patches: upstream: http://git.qemu.org/?p=qemu.git;a=commit;h=0be839a2701369f669532ea5884c15bead1c6e08 |