{
  "threat_severity" : "Important",
  "public_date" : "2014-03-03T00:00:00Z",
  "bugzilla" : {
    "description" : "kernel: kvm: mmio_fragments out-of-the-bounds access",
    "id" : "1062368",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1062368"
  },
  "cvss" : {
    "cvss_base_score" : "6.5",
    "cvss_scoring_vector" : "AV:A/AC:H/Au:S/C:C/I:C/A:C",
    "status" : "draft"
  },
  "details" : [ "Buffer overflow in the complete_emulated_mmio function in arch/x86/kvm/x86.c in the Linux kernel before 3.13.6 allows guest OS users to execute arbitrary code on the host OS by leveraging a loop that triggers an invalid memory copy affecting certain cancel_work_item data." ],
  "statement" : "Not vulnerable.\nThis issue did not affect the versions of kvm package as shipped with Red\nHat Enterprise Linux 5 as they did not backport the upstream kvm commit\nthat introduced this issue.\nThis issue did not affect the versions of Linux kernel as shipped Red Hat\nEnterprise Linux 6 as they did not backport the upstream kvm commit that\nintroduced this issue.\nThis issue did not affect the versions of Linux kernel as shipped Red Hat\nEnterprise MRG as they did not provide support for the KVM subsystem.",
  "acknowledgement" : "Red Hat would like to thank Lars Bull (Google) for reporting this issue.",
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 5",
    "fix_state" : "Not affected",
    "package_name" : "kvm",
    "cpe" : "cpe:/o:redhat:enterprise_linux:5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise MRG 2",
    "fix_state" : "Not affected",
    "package_name" : "realtime-kernel",
    "cpe" : "cpe:/a:redhat:enterprise_mrg:2"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2014-0049\nhttps://nvd.nist.gov/vuln/detail/CVE-2014-0049" ],
  "name" : "CVE-2014-0049",
  "csaw" : false
}