1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
|
PublicDateAtUSN: 2014-10-17
Candidate: CVE-2014-3689
PublicDate: 2014-11-14
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3689
http://www.ubuntu.com/usn/usn-2409-1
Description:
The vmware-vga driver (hw/display/vmware_vga.c) in QEMU allows local guest
users to write to qemu memory locations and gain privileges via unspecified
parameters related to rectangle handling.
Ubuntu-Description:
Notes:
Bugs:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=765496
Priority: medium
Discovered-by:
Assigned-to: mdeslaur
Patches_qemu-kvm:
upstream_qemu-kvm: needs-triage
lucid_qemu-kvm: released (0.12.3+noroms-0ubuntu9.25)
precise_qemu-kvm: released (1.0+noroms-0ubuntu14.19)
trusty_qemu-kvm: DNE
utopic_qemu-kvm: DNE
devel_qemu-kvm: DNE
Patches_qemu:
proposed: http://thread.gmane.org/gmane.comp.emulators.qemu/301713
upstream: http://git.qemu.org/?p=qemu.git;a=commit;h=83afa38eb20ca27e30683edc7729880e091387fc
upstream: http://git.qemu.org/?p=qemu.git;a=commit;h=07258900fd45b646f5b69048d64c4490b3243e1b
upstream: http://git.qemu.org/?p=qemu.git;a=commit;h=1735fe1edba9cc86bc0f26937ed5a62d3cb47c9c
upstream: http://git.qemu.org/?p=qemu.git;a=commit;h=61b41b4c20eba08d2185297767e69153d7f3e09d
upstream: http://git.qemu.org/?p=qemu.git;a=commit;h=bd9ccd8517e83b7c33a9167815dbfffb30d70b13
upstream_qemu: needs-triage
lucid_qemu: DNE
precise_qemu: DNE
trusty_qemu: released (2.0.0+dfsg-2ubuntu1.7)
utopic_qemu: released (2.1+dfsg-4ubuntu6.1)
devel_qemu: released (2.1+dfsg-4ubuntu9)
|