Multiple heap-based buffer overflows in the virtio-blk driver (hw/virtio-blk.c) in qemu-kvm 0.14.0 allow local guest users to cause a denial of service (guest crash) and possibly gain privileges via a (1) write request to the virtio_blk_handle_write function or (2) read request to the virtio_blk_handle_read function that is not properly aligned.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2012-06-21T15:00:00
Updated: 2024-08-06T22:37:25.770Z
Reserved: 2011-04-19T00:00:00
Link: CVE-2011-1750
Vulnrichment
No data.
NVD
Status : Modified
Published: 2012-06-21T15:55:08.880
Modified: 2023-02-13T04:30:48.463
Link: CVE-2011-1750
Redhat