OpenCVE

Integer signedness error in the virtio_net_load function in hw/net/virtio-net.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers a buffer overflow.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Qemu	Qemu
Redhat	Enterprise Linux Openstack

Configuration 1 [-]

OR	cpe:2.3:a:qemu:qemu:1.0:::::::*
	cpe:2.3:a:qemu:qemu:1.0:rc1::::::
	cpe:2.3:a:qemu:qemu:1.0:rc2::::::
	cpe:2.3:a:qemu:qemu:1.0:rc3::::::
	cpe:2.3:a:qemu:qemu:1.0:rc4::::::
	cpe:2.3:a:qemu:qemu:1.0.1:::::::*
	cpe:2.3:a:qemu:qemu:1.1:::::::*
	cpe:2.3:a:qemu:qemu:1.1:rc1::::::
	cpe:2.3:a:qemu:qemu:1.1:rc2::::::
	cpe:2.3:a:qemu:qemu:1.1:rc3::::::
	cpe:2.3:a:qemu:qemu:1.1:rc4::::::
	cpe:2.3:a:qemu:qemu:1.4.1:::::::*
	cpe:2.3:a:qemu:qemu:1.4.2:::::::*
	cpe:2.3:a:qemu:qemu:1.5.0:::::::*
	cpe:2.3:a:qemu:qemu:1.5.0:rc1::::::
	cpe:2.3:a:qemu:qemu:1.5.0:rc2::::::
	cpe:2.3:a:qemu:qemu:1.5.0:rc3::::::
	cpe:2.3:a:qemu:qemu:1.5.1:::::::*
	cpe:2.3:a:qemu:qemu:1.5.2:::::::*
	cpe:2.3:a:qemu:qemu:1.5.3:::::::*
	cpe:2.3:a:qemu:qemu:1.6.0:::::::*
	cpe:2.3:a:qemu:qemu:1.6.0:rc1::::::
	cpe:2.3:a:qemu:qemu:1.6.0:rc2::::::
	cpe:2.3:a:qemu:qemu:1.6.0:rc3::::::
	cpe:2.3:a:qemu:qemu:1.6.1:::::::*
	cpe:2.3:a:qemu:qemu:1.6.2:::::::*
	cpe:2.3:a:qemu:qemu:1.7.1:::::::*

Package	CPE	Advisory	Released Date
OpenStack 3 for RHEL 6
qemu-kvm-rhev-2:0.12.1.2-2.415.el6_5.10	cpe:/a:redhat:openstack:3::el6	RHSA-2014:0888	2014-07-24T00:00:00Z
OpenStack 4 for RHEL 6
qemu-kvm-rhev-2:0.12.1.2-2.415.el6_5.10	cpe:/a:redhat:openstack:4::el6	RHSA-2014:0888	2014-07-24T00:00:00Z
Red Hat Enterprise Linux 6
qemu-kvm-2:0.12.1.2-2.415.el6_5.10	cpe:/o:redhat:enterprise_linux:6	RHSA-2014:0743	2014-06-10T00:00:00Z
Red Hat Enterprise Linux 7
qemu-kvm-10:1.5.3-60.el7_0.5	cpe:/o:redhat:enterprise_linux:7	RHSA-2014:0927	2014-07-23T00:00:00Z
Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7
qemu-kvm-rhev-10:1.5.3-60.el7_0.7	cpe:/a:redhat:openstack:5::el7	RHSA-2014:1268	2014-09-22T00:00:00Z
RHEV 3.X Hypervisor and Agents for RHEL-6
qemu-kvm-rhev-2:0.12.1.2-2.415.el6_5.10	cpe:/a:redhat:enterprise_linux:6::hypervisor	RHSA-2014:0744	2014-06-10T00:00:00Z
rhev-hypervisor6-0:6.5-20140603.2.el6ev	cpe:/o:redhat:enterprise_linux:6::hypervisor	RHSA-2014:0674	2014-06-09T00:00:00Z

References

Link	Providers
http://git.qemu.org/?p=qemu.git%3Ba=commitdiff%3Bh=71f7fe48e10a8437c9d42d859389f37157f59980
http://lists.fedoraproject.org/pipermail/package-announce/2014-May/133345.html
http://lists.nongnu.org/archive/html/qemu-stable/2014-07/msg00187.html
http://rhn.redhat.com/errata/RHSA-2014-0743.html
http://rhn.redhat.com/errata/RHSA-2014-0744.html
https://nvd.nist.gov/vuln/detail/CVE-2013-4148
https://www.cve.org/CVERecord?id=CVE-2013-4148

History

No history.

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2014-11-04T21:00:00

Updated: 2024-08-06T16:30:50.043Z

Reserved: 2013-06-12T00:00:00

Link: CVE-2013-4148

Vulnrichment

No data.

NVD

Status : Modified

Published: 2014-11-04T21:55:24.030

Modified: 2024-11-21T01:54:58.177

Link: CVE-2013-4148

Redhat

Severity : Moderate

Publid Date: 2013-12-03T00:00:00Z

Links: CVE-2013-4148 - Bugzilla

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object