CVE-2014-0146 — NULL Pointer Dereference in Qemu

CWE-476 — NULL Pointer Dereference9 documents7 sources

Severity

5.5MEDIUMNVD

OSV7.5

EPSS

0.1%

top 70.09%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Qemu Debian Qemu

Timeline

PublishedAug 10

Latest updateMay 17

Description

The qcow2_open function in the (block/qcow2.c) in QEMU before 1.7.2 and 2.x before 2.0.0 allows local users to cause a denial of service (NULL pointer dereference) via a crafted image which causes an error, related to the initialization of the snapshot_offset and nb_snapshots fields.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

▶debiandebian/qemu< qemu 2.0.0+dfsg-1 (bookworm)

▶Debianqemu/qemu< 2.0.0+dfsg-1+3

▶Ubuntuqemu/qemu< 2.0.0+dfsg-2ubuntu1.3

▶NVDqemu/qemu1.7.1+1

🔴Vulnerability Details

GHSA

GHSA-jfvf-g3qm-f87g: The qcow2_open function in the (block/qcow2↗2022-05-17

▶

OSV

CVE-2014-0146: The qcow2_open function in the (block/qcow2↗2017-08-10

▶

OSV

qemu, qemu-kvm vulnerabilities↗2014-09-08

▶

📋Vendor Advisories

Ubuntu

QEMU vulnerabilities↗2014-09-08

▶

Red Hat

Qemu: qcow2: NULL dereference in qcow2_open() error path↗2014-03-26

▶

Debian

CVE-2014-0146: qemu - The qcow2_open function in the (block/qcow2.c) in QEMU before 1.7.2 and 2.x befo...↗2014

▶

💬Community

Bugzilla

CVE-2014-0146 Qemu: qcow2: NULL dereference in qcow2_open() error path [fedora-all]↗2014-04-11

▶

Bugzilla

CVE-2014-0146 Qemu: qcow2: NULL dereference in qcow2_open() error path↗2014-03-19

▶