CVE-2013-4541

Priority
Description
The usb_device_post_load function in hw/usb/bus.c in QEMU before 1.7.2
might allow remote attackers to execute arbitrary code via a crafted savevm
image, related to a negative setup_len or setup_index value.
Assigned-to
mdeslaur
Package
Source: qemu (LP Ubuntu Debian)
Upstream:needed
Ubuntu 14.04 LTS (Trusty Tahr):released (2.0.0+dfsg-2ubuntu1.3)
Patches:
Upstream:http://git.qemu.org/?p=qemu.git;a=commit;h=9f8e9895c504149d7048e9fc5eb5cbb34b16e49a
Package
Upstream:needed
Ubuntu 14.04 LTS (Trusty Tahr):DNE
More Information

Updated: 2019-03-19 12:12:43 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)