PT-2014-3497 · Qemu+5 · Qemu+5

Published

2014-03-26

Updated

2024-06-15

CVE-2014-0142

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions QEMU versions prior to 2.0.0

Description The issue allows local users to cause a denial of service, resulting in a divide-by-zero error and crash. This can be achieved by setting a zero value in either the tracks field to the seek to sector function in block/parallels.c or the extent size field in the bochs function in block/bochs.c.

Recommendations For versions prior to 2.0.0, update to version 2.0.0 or later to resolve the issue.

Fix

DoS

Divide By Zero

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-369

Related Identifiers

ALT-PU-2014-1987

CESA-2014_0420

CVE-2014-0142

DSA-3044-1

DSA-3045-1

MGASA-2014-0426

OPENSUSE-SU-2024:10233-1

RHSA-2014:0420

RHSA-2014:0421

RHSA-2014:0434

RHSA-2014:0435

RHSA-2014:0674

RHSA-2014_0420

SUSE-SU-2015:0870-1

SUSE-SU-2015:0889-1

SUSE-SU-2015:1152-1

USN-2342-1

Affected Products

Alt Linux

Centos

Qemu

Red Hat

Suse

Ubuntu

PT-2014-3497 · Qemu+5 · Qemu+5

CVE-2014-0142

Weakness Enumeration

Related Identifiers

Affected Products

References · 182