CVE-2014-0146
The MITRE CVE dictionary describes this issue as:
The qcow2_open function in the (block/qcow2.c) in QEMU before 1.7.2 and 2.x before 2.0.0 allows local users to cause a denial of service (NULL pointer dereference) via a crafted image which causes an error, related to the initialization of the snapshot_offset and nb_snapshots fields.
Find out more about CVE-2014-0146 from the MITRE CVE dictionary dictionary and NIST NVD.
Statement
This issue affects the versions of kvm package as shipped with Red Hat
Enterprise Linux 5.
This issue affects the versions of qemu-kvm package as shipped with Red Hat
Enterprise Linux 6.
CVSS v2 metrics
| Base Score | 4 |
|---|---|
| Base Metrics | AV:L/AC:H/Au:N/C:N/I:N/A:C |
| Access Vector | Local |
| Access Complexity | High |
| Authentication | None |
| Confidentiality Impact | None |
| Integrity Impact | None |
| Availability Impact | Complete |
Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).
Red Hat Security Errata
| Platform | Errata | Release Date |
|---|---|---|
| RHEV Agents (vdsm) (qemu-kvm-rhev) | RHSA-2014:0421 | 2014-04-22 |
| Red Hat Enterprise Linux OpenStack Platform 3.0 (qemu-kvm-rhev) | RHSA-2014:0435 | 2014-04-24 |
| Red Hat Enterprise Linux 6 (qemu-kvm) | RHSA-2014:0420 | 2014-04-22 |
| Red Hat Enterprise Linux OpenStack Platform 4.0 (qemu-kvm-rhev) | RHSA-2014:0434 | 2014-04-24 |
| RHEV Hypervisor for RHEL-6 (rhev-hypervisor6) | RHSA-2014:0674 | 2014-06-09 |
Affected Packages State
| Platform | Package | State |
|---|---|---|
| Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) | qemu-kvm-rhev | Will not fix |
| Red Hat Enterprise Linux 7 | qemu-kvm | Not affected |
| Red Hat Enterprise Linux 5 | kvm | Fix deferred |
Acknowledgements
This issue was discovered by Kevin Wolf of Red Hat Inc.CVE description copyright © 2017, The MITRE Corporation