QwikSec

Security Database

CVE

CWE

Training

CVE-2014-5388

Published: Nov 15, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

Off-by-one error in the pci_read function in the ACPI PCI hotplug interface (hw/acpi/pcihp.c) in QEMU allows local guest users to obtain sensitive information and have other unspecified impact related to a crafted PCI device that triggers memory corruption.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[Qemu-devel] 20140820 [PATCH v2] pcihp: fix possible array out of bounds

mailing-list

x_refsource_MLIST

[oss-security] 20140822 CVE request Qemu: out of bounds memory access

mailing-list

x_refsource_MLIST

[oss-security] 20140822 Re: CVE request Qemu: out of bounds memory access

mailing-list

x_refsource_MLIST

https://bugzilla.redhat.com/show_bug.cgi?id=1132956

x_refsource_CONFIRM

vendor-advisory

x_refsource_UBUNTU

http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=fa365d7cd11185237471823a5a33d36765454e16

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.