CVE-2014-0144

Priority
Description
qcow2: Validate active L1 table offset and size, qcow2: Validate snapshot
table offset/size, qcow2: Check refcount table size, qcow2: Check
backing_file_offset, qcow2: Check header_length, curl: check data size before
memcpy to local buffer. , vdi: add bounds checks for blocks_in_image and
disk_size header fields, vpc/vhd: add bounds check for max_table_entries and
block_size, block/cloop: refuse images with bogus offsets, block/cloop: refuse
images with huge offsets arrays, block/cloop: validate block_size header field
Assigned-to
mdeslaur
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Patches:
Other:https://lists.gnu.org/archive/html/qemu-devel/2014-03/msg04994.html
More Information

Updated: 2019-03-19 12:13:49 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)