Security Advisory

CVE-2014-0223

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-11-04 21:00:00

Last updated 2024-08-06 09:05:39

Assigner redhat

State PUBLISHED

Description

Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a large image size, which triggers a buffer overflow or out-of-bounds read.

← Browse all CVEs View on cve.org ↗