Qemu · Qemu · CVE-2014-2894
**Name of the Vulnerable Software and Affected Versions**
QEMU versions prior to 2.0
**Description**
The issue is caused by an off-by-one error in the cmd smart function in the smart self test in hw/ide/core.c. This error can be triggered by a SMART EXECUTE OFFLINE command, leading to a buffer underflow and memory corruption.
**Recommendations**
For versions prior to 2.0, update to version 2.0 or later to resolve the issue.