Off-by-one error in the cmd_smart function in the smart self test in hw/ide/core.c in QEMU before 2.0 allows local users to have unspecified impact via a SMART EXECUTE OFFLINE command that triggers a buffer underflow and memory corruption.
References
Configurations
Configuration 1 (hide)
|
History
13 Feb 2023, 00:38
Type | Values Removed | Values Added |
---|---|---|
Summary | Off-by-one error in the cmd_smart function in the smart self test in hw/ide/core.c in QEMU before 2.0 allows local users to have unspecified impact via a SMART EXECUTE OFFLINE command that triggers a buffer underflow and memory corruption. | |
References |
|
02 Feb 2023, 20:17
Type | Values Removed | Values Added |
---|---|---|
Summary | CVE-2014-2894 QEMU: out of bounds buffer accesses, guest triggerable via IDE SMART | |
References |
|
Information
Published : 2014-04-23 15:55
Updated : 2023-12-10 11:31
NVD link : CVE-2014-2894
Mitre link : CVE-2014-2894
CVE.ORG link : CVE-2014-2894
JSON object : View
Products Affected
qemu
- qemu
CWE
CWE-189
Numeric Errors