QEMU 'vmstate_xhci_event' Field Memory Corruption Vulnerability
BID:69247
Info
QEMU 'vmstate_xhci_event' Field Memory Corruption Vulnerability
| Bugtraq ID: | 69247 |
| Class: | Unknown |
| CVE: |
CVE-2014-5263 |
| Remote: | No |
| Local: | Yes |
| Published: | Aug 04 2014 12:00AM |
| Updated: | Mar 19 2015 08:07AM |
| Credit: | Laszlo Ersek |
| Vulnerable: |
QEMU QEMU 0 Oracle Enterprise Linux 7 Mandriva Business Server 1 X86 64 Mandriva Business Server 1 Gentoo Linux |
| Not Vulnerable: | |
Solution / Fix
QEMU 'vmstate_xhci_event' Field Memory Corruption Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Mandriva Business Server 1 X86 64
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Mandriva Business Server 1 X86 64
-
Mandriva lib64usbredirhost-devel-0.7-1.mbs1.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva lib64usbredirhost1-0.7-1.mbs1.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva lib64usbredirparser-devel-0.7-1.mbs1.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva lib64usbredirparser1-0.7-1.mbs1.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva qemu-1.6.2-1.1.mbs1.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva qemu-img-1.6.2-1.1.mbs1.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva usbredir-0.7-1.mbs1.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva usbredir-devel-0.7-1.mbs1.x86_64.rpm
http://www.mandriva.com/en/downloads/
References
QEMU 'vmstate_xhci_event' Field Memory Corruption Vulnerability
References:
References:
- Bug 1126543 - (CVE-2014-5263) CVE-2014-5263 qemu: missing field list terminator (Red Hat Bugzilla)
- QEMU Homepage (QEMU)
- vmstate_xhci_event: fix unterminated field list (Laszlo Ersek)