CVE-2014-3461

Priority
Description
hw/usb/bus.c in QEMU 1.6.2 allows remote attackers to execute arbitrary
code via crafted savevm data, which triggers a heap-based buffer overflow,
related to "USB post load checks."
Assigned-to
mdeslaur
Notes
Package
Source: qemu (LP Ubuntu Debian)
Upstream:needed
Ubuntu 14.04 ESM (Trusty Tahr):released (2.0.0+dfsg-2ubuntu1.3)
Patches:
Upstream:http://git.qemu.org/?p=qemu.git;a=commit;h=719ffe1f5f72b1c7ace4afe9ba2815bcb53a829e
Package
Upstream:needed
Ubuntu 14.04 ESM (Trusty Tahr):DNE
More Information

Updated: 2020-01-29 19:49:39 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)