VYPR
Unrated severityNVD Advisory· Published Feb 11, 2020· Updated Aug 6, 2024

CVE-2014-0148

CVE-2014-0148

Description

Qemu before 2.0 block driver for Hyper-V VHDX Images is vulnerable to infinite loops and other potential issues when calculating BAT entries, due to missing bounds checks for block_size and logical_sector_size variables. These are used to derive other fields like 'sectors_per_block' etc. A user able to alter the Qemu disk image could ise this flaw to crash the Qemu instance resulting in DoS.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • QEMU/Qemullm-fuzzy2 versions
    < 2.0+ 1 more
    • (no CPE)range: < 2.0
    • (no CPE)range: before 2.0

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.