UBUNTU-CVE-2013-4536
See a problem?- Source
- https://ubuntu.com/security/notices/UBUNTU-CVE-2013-4536
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2013/UBUNTU-CVE-2013-4536.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2013-4536
- Related
- Published
- 2014-02-20T00:00:00Z
- Modified
- 2014-02-20T00:00:00Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
An user able to alter the savevm data (either on the disk or over the wire during migration) could use this flaw to to corrupt QEMU process memory on the (destination) host, which could potentially result in arbitrary code execution on the host with the privileges of the QEMU process.
- References
Affected packages
Ubuntu:14.04:LTS / qemu
Package
- Name
- qemu
- Purl
- pkg:deb/ubuntu/qemu@2.0.0+dfsg-2ubuntu1.3?arch=src?distro=trusty
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.0.0+dfsg-2ubuntu1.3
Affected versions
1.*
1.5.0+dfsg-3ubuntu5
1.5.0+dfsg-3ubuntu6
1.6.0+dfsg-2ubuntu1
1.6.0+dfsg-2ubuntu2
1.6.0+dfsg-2ubuntu3
1.6.0+dfsg-2ubuntu4
1.7.0+dfsg-2ubuntu1
1.7.0+dfsg-2ubuntu2
1.7.0+dfsg-2ubuntu3
1.7.0+dfsg-2ubuntu4
1.7.0+dfsg-2ubuntu5
1.7.0+dfsg-2ubuntu7
1.7.0+dfsg-2ubuntu8
1.7.0+dfsg-2ubuntu9
1.7.0+dfsg-3ubuntu1~ppa1
1.7.0+dfsg-3ubuntu1
1.7.0+dfsg-3ubuntu2
1.7.0+dfsg-3ubuntu3
1.7.0+dfsg-3ubuntu4
1.7.0+dfsg-3ubuntu5
1.7.0+dfsg-3ubuntu6
1.7.0+dfsg-3ubuntu7
2.*
2.0.0~rc1+dfsg-0ubuntu1
2.0.0~rc1+dfsg-0ubuntu2
2.0.0~rc1+dfsg-0ubuntu3
2.0.0~rc1+dfsg-0ubuntu3.1
2.0.0+dfsg-2ubuntu1
2.0.0+dfsg-2ubuntu1.1
2.0.0+dfsg-2ubuntu1.2
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "low",
"binaries": [
{
"qemu-system-misc": "2.0.0+dfsg-2ubuntu1.3",
"qemu-system": "2.0.0+dfsg-2ubuntu1.3",
"qemu-guest-agent": "2.0.0+dfsg-2ubuntu1.3",
"qemu-utils": "2.0.0+dfsg-2ubuntu1.3",
"qemu-user": "2.0.0+dfsg-2ubuntu1.3",
"qemu-kvm": "2.0.0+dfsg-2ubuntu1.3",
"qemu-system-aarch64": "2.0.0+dfsg-2ubuntu1.3",
"qemu-user-static": "2.0.0+dfsg-2ubuntu1.3",
"qemu-system-arm": "2.0.0+dfsg-2ubuntu1.3",
"qemu-system-x86": "2.0.0+dfsg-2ubuntu1.3",
"qemu-system-ppc": "2.0.0+dfsg-2ubuntu1.3",
"qemu": "2.0.0+dfsg-2ubuntu1.3",
"qemu-system-common": "2.0.0+dfsg-2ubuntu1.3",
"qemu-keymaps": "2.0.0+dfsg-2ubuntu1.3",
"qemu-system-sparc": "2.0.0+dfsg-2ubuntu1.3",
"qemu-system-mips": "2.0.0+dfsg-2ubuntu1.3",
"qemu-common": "2.0.0+dfsg-2ubuntu1.3"
}
]
}