Lucene search

[email protected]NVD:CVE-2014-0222

HistoryNov 04, 2014 - 9:55 p.m.

CVE-2014-0222

2014-11-0421:55:25

CWE-189

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.1

Confidence

High

EPSS

0.036

Percentile

91.7%

JSON

Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service (crash) via a large L2 table in a QCOW version 1 image.

Affected configurations

Nvd

Node

suselinux_enterprise_serverMatch11.0sp1

Node

qemuqemuRange≤1.7.1

qemuqemuMatch0.1.0

qemuqemuMatch0.1.1

qemuqemuMatch0.1.2

qemuqemuMatch0.1.3

qemuqemuMatch0.1.4

qemuqemuMatch0.1.5

qemuqemuMatch0.1.6

qemuqemuMatch0.2.0

qemuqemuMatch0.3.0

qemuqemuMatch0.4.0

qemuqemuMatch0.4.1

qemuqemuMatch0.4.2

qemuqemuMatch0.4.3

qemuqemuMatch0.5.0

qemuqemuMatch0.5.1

qemuqemuMatch0.5.2

qemuqemuMatch0.5.3

qemuqemuMatch0.5.4

qemuqemuMatch0.5.5

qemuqemuMatch0.6.0

qemuqemuMatch0.6.1

qemuqemuMatch0.7.0

qemuqemuMatch0.7.1

qemuqemuMatch0.7.2

qemuqemuMatch0.8.0

qemuqemuMatch0.8.1

qemuqemuMatch0.8.2

qemuqemuMatch0.9.0

qemuqemuMatch0.9.1

qemuqemuMatch0.9.1-5

qemuqemuMatch0.10.0

qemuqemuMatch0.10.1

qemuqemuMatch0.10.2

qemuqemuMatch0.10.3

qemuqemuMatch0.10.4

qemuqemuMatch0.10.5

qemuqemuMatch0.10.6

qemuqemuMatch0.11.0

qemuqemuMatch0.11.0rc0

qemuqemuMatch0.11.0rc1

qemuqemuMatch0.11.0rc2

qemuqemuMatch0.11.0-rc0

qemuqemuMatch0.11.0-rc1

qemuqemuMatch0.11.0-rc2

qemuqemuMatch0.11.1

qemuqemuMatch0.12.0

qemuqemuMatch0.12.0rc1

qemuqemuMatch0.12.0rc2

qemuqemuMatch0.12.1

qemuqemuMatch0.12.2

qemuqemuMatch0.12.3

qemuqemuMatch0.12.4

qemuqemuMatch0.12.5

qemuqemuMatch0.13.0

qemuqemuMatch0.13.0rc0

qemuqemuMatch0.13.0rc1

qemuqemuMatch0.14.0

qemuqemuMatch0.14.0rc0

qemuqemuMatch0.14.0rc1

qemuqemuMatch0.14.0rc2

qemuqemuMatch0.14.1

qemuqemuMatch0.15.0rc1

qemuqemuMatch0.15.0rc2

qemuqemuMatch0.15.1

qemuqemuMatch0.15.2

qemuqemuMatch1.0

qemuqemuMatch1.0rc1

qemuqemuMatch1.0rc2

qemuqemuMatch1.0rc3

qemuqemuMatch1.0rc4

qemuqemuMatch1.0.1

qemuqemuMatch1.1

qemuqemuMatch1.1rc1

qemuqemuMatch1.1rc2

qemuqemuMatch1.1rc3

qemuqemuMatch1.1rc4

qemuqemuMatch1.4.1

qemuqemuMatch1.4.2

qemuqemuMatch1.5.0

qemuqemuMatch1.5.0rc1

qemuqemuMatch1.5.0rc2

qemuqemuMatch1.5.0rc3

qemuqemuMatch1.5.1

qemuqemuMatch1.5.2

qemuqemuMatch1.5.3

qemuqemuMatch1.6.0

qemuqemuMatch1.6.0rc1

qemuqemuMatch1.6.0rc2

qemuqemuMatch1.6.0rc3

qemuqemuMatch1.6.1

qemuqemuMatch1.6.2

VendorProductVersionCPE
suselinux_enterprise_server11.0cpe:2.3:o:suse:linux_enterprise_server:11.0:sp1:*:*:*:*:*:*
qemuqemu*cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*
qemuqemu0.1.0cpe:2.3:a:qemu:qemu:0.1.0:*:*:*:*:*:*:*
qemuqemu0.1.1cpe:2.3:a:qemu:qemu:0.1.1:*:*:*:*:*:*:*
qemuqemu0.1.2cpe:2.3:a:qemu:qemu:0.1.2:*:*:*:*:*:*:*
qemuqemu0.1.3cpe:2.3:a:qemu:qemu:0.1.3:*:*:*:*:*:*:*
qemuqemu0.1.4cpe:2.3:a:qemu:qemu:0.1.4:*:*:*:*:*:*:*
qemuqemu0.1.5cpe:2.3:a:qemu:qemu:0.1.5:*:*:*:*:*:*:*
qemuqemu0.1.6cpe:2.3:a:qemu:qemu:0.1.6:*:*:*:*:*:*:*
qemuqemu0.2.0cpe:2.3:a:qemu:qemu:0.2.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
suse	linux_enterprise_server	11.0	cpe:2.3:o:suse:linux_enterprise_server:11.0:sp1::::::
qemu	qemu	*	cpe:2.3:a:qemu:qemu::::::::
qemu	qemu	0.1.0	cpe:2.3:a:qemu:qemu:0.1.0:::::::*
qemu	qemu	0.1.1	cpe:2.3:a:qemu:qemu:0.1.1:::::::*
qemu	qemu	0.1.2	cpe:2.3:a:qemu:qemu:0.1.2:::::::*
qemu	qemu	0.1.3	cpe:2.3:a:qemu:qemu:0.1.3:::::::*
qemu	qemu	0.1.4	cpe:2.3:a:qemu:qemu:0.1.4:::::::*
qemu	qemu	0.1.5	cpe:2.3:a:qemu:qemu:0.1.5:::::::*
qemu	qemu	0.1.6	cpe:2.3:a:qemu:qemu:0.1.6:::::::*
qemu	qemu	0.2.0	cpe:2.3:a:qemu:qemu:0.2.0:::::::*