CVE-2014-5263 (retired)

Priority
Description
vmstate_xhci_event in hw/usb/hcd-xhci.c in QEMU 1.6.0 does not terminate
the list with the VMSTATE_END_OF_LIST macro, which allows attackers to
cause a denial of service (out-of-bounds access, infinite loop, and memory
corruption) and possibly gain privileges via unspecified vectors.
Notes
 mdeslaur> only 1.6.x and higher
Assigned-to
mdeslaur
Package
Upstream:needs-triage
More Information

Updated: 2019-09-19 15:49:52 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)