Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2013-4344HistoryOct 04, 2013 - 5:55 p.m.
CVE-2013-4344
2013-10-0417:55:09
Debian Security Bug Tracker
security-tracker.debian.org
15
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.1%
Buffer overflow in the SCSI implementation in QEMU, as used in Xen, when a SCSI controller has more than 256 attached devices, allows local users to gain privileges via a small transfer buffer in a REPORT LUNS command.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | qemu | < 1.6.0+dfsg-2 | qemu_1.6.0+dfsg-2_all.deb |
| Debian | 11 | all | qemu | < 1.6.0+dfsg-2 | qemu_1.6.0+dfsg-2_all.deb |
| Debian | 999 | all | qemu | < 1.6.0+dfsg-2 | qemu_1.6.0+dfsg-2_all.deb |
| Debian | 13 | all | qemu | < 1.6.0+dfsg-2 | qemu_1.6.0+dfsg-2_all.deb |
| Debian | 12 | all | xen | < 4.2-1 | xen_4.2-1_all.deb |
| Debian | 11 | all | xen | < 4.2-1 | xen_4.2-1_all.deb |
| Debian | 999 | all | xen | < 4.2-1 | xen_4.2-1_all.deb |
| Debian | 13 | all | xen | < 4.2-1 | xen_4.2-1_all.deb |
Related
mageia
mageia
Updated qemu package fixes security vulnerability
2013-11-22 22:49:20
nessus
nessus
Oracle Linux 6 : qemu-kvm (ELSA-2013-1553)
2013-11-29 00:00:00
openSUSE Security Update : qemu (openSUSE-SU-2014:0200-1)
2014-06-13 00:00:00
Fedora 19 : qemu-1.4.2-12.fc19 (2013-18493)
2013-10-15 00:00:00
openvas
openvas
Fedora Update for qemu FEDORA-2013-18493
2013-10-15 00:00:00
Oracle: Security Advisory (ELSA-2013-1553)
2015-10-06 00:00:00
RedHat Update for qemu-kvm RHSA-2013:1553-02
2013-11-21 00:00:00
cve
cve
CVE-2013-4344
2013-10-04 17:55:09
fedora
fedora
[SECURITY] Fedora 19 Update: qemu-1.4.2-12.fc19
2013-10-14 17:09:01
[SECURITY] Fedora 19 Update: qemu-1.4.2-12.fc19
2013-10-14 07:06:04
[SECURITY] Fedora 20 Update: qemu-1.6.0-10.fc20
2013-10-15 06:37:36
xen
xen
qemu SCSI REPORT LUNS buffer overflow
2013-10-02 15:00:00
veracode
veracode
Authorization Bypass
2019-01-15 08:51:30
redhat
redhat
centos
centos
qemu security update
2013-11-26 13:32:44
cvelist
cvelist
CVE-2013-4344
2013-10-04 17:00:00
oraclelinux
oraclelinux
qemu-kvm security, bug fix, and enhancement update
2013-11-21 00:00:00
prion
prion
Buffer overflow
2013-10-04 17:55:00
nvd
nvd
CVE-2013-4344
2013-10-04 17:55:09
ubuntucve
ubuntucve
CVE-2013-4344
2013-10-04 00:00:00
osv
osv
qemu-kvm - security update
2014-05-19 00:00:00
qemu - security update
2014-05-19 00:00:00
debian
debian
[SECURITY] [DSA 2932-1] qemu security update
2014-05-19 09:47:59
[SECURITY] [DSA 2932-1] qemu security update
2014-05-19 09:47:59
[SECURITY] [DSA 2933-1] qemu-kvm security update
2014-05-19 13:21:10
securityvulns
securityvulns
[USN-2092-1] QEMU vulnerabilities
2014-02-01 00:00:00
QEMU / Xen multiple security vulnerabilities
2014-02-01 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2014-01-30 00:00:00
suse
suse
xen: security and bugfix update (important)
2014-10-09 13:09:07
Security update for kvm (important)
2014-05-08 19:04:16
xen: security and bugfix update (important)
2014-10-09 13:04:44
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.1%
Related for DEBIANCVE:CVE-2013-4344