CVE-2014-0144 (retired)

Priority
Description
qcow2: Validate active L1 table offset and size, qcow2: Validate snapshot
table offset/size, qcow2: Check refcount table size, qcow2: Check
backing_file_offset, qcow2: Check header_length, curl: check data size before
memcpy to local buffer. , vdi: add bounds checks for blocks_in_image and
disk_size header fields, vpc/vhd: add bounds check for max_table_entries and
block_size, block/cloop: refuse images with bogus offsets, block/cloop: refuse
images with huge offsets arrays, block/cloop: validate block_size header field
Assigned-to
mdeslaur
Package
Upstream:needs-triage
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Patches:
Other:https://lists.gnu.org/archive/html/qemu-devel/2014-03/msg04994.html
More Information

Updated: 2019-09-19 15:47:01 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)