CVE-2014-0146

Priority
Description
The qcow2_open function in the (block/qcow2.c) in QEMU before 1.7.2 and 2.x
before 2.0.0 allows local users to cause a denial of service (NULL pointer
dereference) via a crafted image which causes an error, related to the
initialization of the snapshot_offset and nb_snapshots fields.
Assigned-to
mdeslaur
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Patches:
Other:https://lists.gnu.org/archive/html/qemu-devel/2014-03/msg04994.html
More Information

Updated: 2019-03-19 12:13:49 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)