QEMU < 1.6.2: QCOW2 snapshot update_refcount crash
CVE-2014-0147 Published on September 29, 2022

Qemu before 1.6.2 block diver for the various disk image formats used by Bochs and for the QCOW version 2 format, are vulnerable to a possible crash caused by signed data types or a logic error while creating QCOW2 snapshots, which leads to incorrectly calling update_refcount() routine.

NVD

Products Associated with CVE-2014-0147

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2014-0147 are published in these products:

QEMU

Fedora Project Fedora

Red Hat Enterprise Linux Server Aus

Red Hat Enterprise Linux Server Tus

Red Hat Enterprise Linux Desktop

Red Hat Enterprise Linux Server

Red Hat Enterprise Linux Workstation

Red Hat Virtualization

Red Hat Enterprise Linux Eus

Red Hat Enterprise Linux Openstack Platform

Exploit Probability

EPSS

0.12%

Percentile

31.04%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

QEMU < 1.6.2: QCOW2 snapshot update_refcount crashCVE-2014-0147 Published on September 29, 2022

Products Associated with CVE-2014-0147

Exploit Probability

QEMU < 1.6.2: QCOW2 snapshot update_refcount crash
CVE-2014-0147 Published on September 29, 2022