CVE-2014-0223

Published: Nov 4, 2014Modified: May 6, 2026

4.6

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 3.9 / Impact: 6.4

Source: NVD

Description

Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a large image size, which triggers a buffer overflow or out-of-bounds read.

Affected (93)

Products: Suse: Linux Enterprise Server · Qemu: Qemu

Suse

1 product

Linux Enterprise Server

Qemu

1 product

Qemu

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Suse Linux Enterprise Server	Version 11.0 sp1

Configuration B

92 vulnerable

Vulnerable Software	Affected Versions
Qemu Qemu	Up to 1.7.1
Qemu Qemu	Version 0.1.0
Qemu Qemu	Version 0.1.1
Qemu Qemu	Version 0.1.2
Qemu Qemu	Version 0.1.3
Qemu Qemu	Version 0.1.4
Qemu Qemu	Version 0.1.5
Qemu Qemu	Version 0.1.6
Qemu Qemu	Version 0.10.0
Qemu Qemu	Version 0.10.1
Qemu Qemu	Version 0.10.2
Qemu Qemu	Version 0.10.3
Qemu Qemu	Version 0.10.4
Qemu Qemu	Version 0.10.5
Qemu Qemu	Version 0.10.6
Qemu Qemu	Version 0.11.0-rc0
Qemu Qemu	Version 0.11.0-rc1
Qemu Qemu	Version 0.11.0-rc2
Qemu Qemu	Version 0.11.0
Qemu Qemu	Version 0.11.0 rc0
Qemu Qemu	Version 0.11.0 rc1
Qemu Qemu	Version 0.11.0 rc2
Qemu Qemu	Version 0.11.1
Qemu Qemu	Version 0.12.0
Qemu Qemu	Version 0.12.0 rc1
Qemu Qemu	Version 0.12.0 rc2
Qemu Qemu	Version 0.12.1
Qemu Qemu	Version 0.12.2
Qemu Qemu	Version 0.12.3
Qemu Qemu	Version 0.12.4
Qemu Qemu	Version 0.12.5
Qemu Qemu	Version 0.13.0
Qemu Qemu	Version 0.13.0 rc0
Qemu Qemu	Version 0.13.0 rc1
Qemu Qemu	Version 0.14.0
Qemu Qemu	Version 0.14.0 rc0
Qemu Qemu	Version 0.14.0 rc1
Qemu Qemu	Version 0.14.0 rc2
Qemu Qemu	Version 0.14.1
Qemu Qemu	Version 0.15.0 rc1
Qemu Qemu	Version 0.15.0 rc2
Qemu Qemu	Version 0.15.1
Qemu Qemu	Version 0.15.2
Qemu Qemu	Version 0.2.0
Qemu Qemu	Version 0.3.0
Qemu Qemu	Version 0.4.0
Qemu Qemu	Version 0.4.1
Qemu Qemu	Version 0.4.2
Qemu Qemu	Version 0.4.3
Qemu Qemu	Version 0.5.0
Qemu Qemu	Version 0.5.1
Qemu Qemu	Version 0.5.2
Qemu Qemu	Version 0.5.3
Qemu Qemu	Version 0.5.4
Qemu Qemu	Version 0.5.5
Qemu Qemu	Version 0.6.0
Qemu Qemu	Version 0.6.1
Qemu Qemu	Version 0.7.0
Qemu Qemu	Version 0.7.1
Qemu Qemu	Version 0.7.2
Qemu Qemu	Version 0.8.0
Qemu Qemu	Version 0.8.1
Qemu Qemu	Version 0.8.2
Qemu Qemu	Version 0.9.0
Qemu Qemu	Version 0.9.1-5
Qemu Qemu	Version 0.9.1
Qemu Qemu	Version 1.0.1
Qemu Qemu	Version 1.0
Qemu Qemu	Version 1.0 rc1
Qemu Qemu	Version 1.0 rc2
Qemu Qemu	Version 1.0 rc3
Qemu Qemu	Version 1.0 rc4
Qemu Qemu	Version 1.1
Qemu Qemu	Version 1.1 rc1
Qemu Qemu	Version 1.1 rc2
Qemu Qemu	Version 1.1 rc3
Qemu Qemu	Version 1.1 rc4
Qemu Qemu	Version 1.4.1
Qemu Qemu	Version 1.4.2
Qemu Qemu	Version 1.5.0
Qemu Qemu	Version 1.5.0 rc1
Qemu Qemu	Version 1.5.0 rc2
Qemu Qemu	Version 1.5.0 rc3
Qemu Qemu	Version 1.5.1
Qemu Qemu	Version 1.5.2
Qemu Qemu	Version 1.5.3
Qemu Qemu	Version 1.6.0
Qemu Qemu	Version 1.6.0 rc1
Qemu Qemu	Version 1.6.0 rc2
Qemu Qemu	Version 1.6.0 rc3
Qemu Qemu	Version 1.6.1
Qemu Qemu	Version 1.6.2