Vulnerability Name:

CVE-2014-5388 (CCN-95419)

Assigned:2014-08-22
Published:2014-08-22
Updated:2023-02-13
Summary:QEMU could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds access error in ACPI PCI hotplug interface. An attacker could exploit this vulnerability to corrupt QEMU process memory and obtain sensitive information.
CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:4.6 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
3.4 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.5 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2014-5388

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: CCN
Type: QEMU GIT Repository
Merge remote-tracking branch 'remotes/kevin/tags/for-upstream' into staging

Source: CCN
Type: oss-security Mailing List, Fri, 22 Aug 2014 18:16:49 +0530 (IST)
CVE request Qemu: out of bounds memory access

Source: secalert@redhat.com
Type: Mailing List, Patch, Third Party Advisory
secalert@redhat.com

Source: CCN
Type: oss-security Mailing List, Fri, 22 Aug 2014 15:25:42 -0400 (EDT)
Re: CVE request Qemu: out of bounds memory access

Source: secalert@redhat.com
Type: Mailing List, Third Party Advisory
secalert@redhat.com

Source: CCN
Type: IBM Security Bulletin 1021956
PowerKVM Qemu Vulnerabilities: Multiple CVEs

Source: CCN
Type: BID-69356
QEMU 'pcihp.c' Out of Bounds Memory Corruption Vulnerability

Source: secalert@redhat.com
Type: Third Party Advisory
secalert@redhat.com

Source: secalert@redhat.com
Type: Issue Tracking, Third Party Advisory
secalert@redhat.com

Source: XF
Type: UNKNOWN
qemu-cve20145388-code-exec(95419)

Source: secalert@redhat.com
Type: Patch, Third Party Advisory
secalert@redhat.com

Vulnerable Configuration:Configuration CCN 1:
  • cpe:/a:fabrice_bellard:qemu:0.8.2:*:*:*:*:*:*:*
  • AND
  • cpe:/a:ibm:powerkvm:2.1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20145388
    V
    		CVE-2014-5388
    2022-05-20
    oval:org.opensuse.security:def:38441
    P
    		Security update for SUSE Manager Client Tools (Moderate)
    2021-10-27
    oval:org.opensuse.security:def:38662
    P
    		Security update for MozillaFirefox (Important)
    2021-10-01
    oval:org.opensuse.security:def:14840
    P
    		avahi-0.6.32-32.3.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14910
    P
    		grub2-2.02-12.15.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14806
    P
    		xorg-x11-7.6_1-14.17 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14961
    P
    		libXp6-1.0.2-3.57 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14981
    P
    		libcdio14-0.90-6.3.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:15174
    P
    		rpcbind-0.2.3-24.9.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:15005
    P
    		libicu-doc-52.1-8.7.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:15185
    P
    		shadow-4.2.1-34.20 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:15099
    P
    		libvorbis-doc-1.3.3-10.14.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:15201
    P
    		tar-1.27.1-15.3.7 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:15126
    P
    		ntp-4.2.8p13-85.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14814
    P
    		zoo-2.10-1020.56 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:38823
    P
    		Security update for djvulibre (Important)
    2021-08-04
    oval:org.opensuse.security:def:15839
    P
    		libraw-devel-0.15.4-3.88 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:15862
    P
    		libxml2-devel-2.9.1-10.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:38765
    P
    		Security update for clamav (Important)
    2021-04-14
    oval:org.opensuse.security:def:38429
    P
    		Security update for python-Jinja2 (Important)
    2021-02-25
    oval:org.opensuse.security:def:41109
    P
    		Security update for ImageMagick (Moderate)
    2021-01-15
    oval:org.opensuse.security:def:39132
    P
    		Security update for libqt4 (Moderate)
    2020-12-16
    oval:org.opensuse.security:def:40492
    P
    		Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP1) (Important)
    2020-12-01
    oval:org.opensuse.security:def:19040
    P
    		Security update for libunwind (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:39220
    P
    		libyaml-cpp0_5 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:40236
    P
    		Security update for the Linux Kernel (Live Patch 23 for SLE 12 SP1) (Important)
    2020-12-01
    oval:org.opensuse.security:def:18946
    P
    		Security update for libcroco (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38913
    P
    		libmikmod3 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:40601
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:19678
    P
    		Security update for java-1_7_1-ibm (Important)
    2020-12-01
    oval:org.opensuse.security:def:39248
    P
    		Security update for puppet (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:18550
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:41064
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:39073
    P
    		cyrus-sasl-digestmd5-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:40670
    P
    		Security update for the Linux Kernel (Live Patch 18 for SLE 12 SP2) (Important)
    2020-12-01
    oval:org.opensuse.security:def:19704
    P
    		Security update for qemu (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:39293
    P
    		Security update for slurm (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:18585
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:38430
    P
    		pam on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:40772
    P
    		Security update for openssl (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:39931
    P
    		Security update for openslp (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:18671
    P
    		Security update for xen (Important)
    2020-12-01
    oval:org.opensuse.security:def:41138
    P
    		Security update for perl-DBI (Important)
    2020-12-01
    oval:org.opensuse.security:def:18542
    P
    		Security update for php5 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:40948
    P
    		Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP2) (Important)
    2020-12-01
    oval:org.opensuse.security:def:39973
    P
    		Security update for qemu (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:18729
    P
    		Security update for PackageKit (Important)
    2020-12-01
    oval:org.opensuse.security:def:41189
    P
    		Security update for ovmf (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38525
    P
    		xorg-x11-server on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:40237
    P
    		Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP1) (Important)
    2020-12-01
    oval:org.opensuse.security:def:41012
    P
    		Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP2) (Important)
    2020-12-01
    oval:org.opensuse.security:def:18763
    P
    		Security update for samba (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:41827
    P
    		Security update for qemu (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:40248
    P
    		Security update for xen (Important)
    2020-12-01
    oval:org.opensuse.security:def:19004
    P
    		Security update for java-1_7_1-ibm (Important)
    2020-12-01
    oval:org.opensuse.security:def:18801
    P
    		Security update for sssd (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:41872
    P
    		Security update for qemu (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:40340
    P
    		Security update for postgresql94 (Important)
    2020-12-01
    oval:org.opensuse.security:def:19016
    P
    		Security update for python3 (Important)
    2020-12-01
    oval:org.opensuse.security:def:39181
    P
    		libSoundTouch0-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:18913
    P
    		Security update for pacemaker (Important)
    2020-12-01
    oval:org.mitre.oval:def:28286
    P
    		USN-2409-1 -- QEMU vulnerabilities
    2015-03-09
    oval:com.ubuntu.precise:def:20145388000
    V
    		CVE-2014-5388 on Ubuntu 12.04 LTS (precise) - low.
    2014-11-15
    oval:com.ubuntu.trusty:def:20145388000
    V
    		CVE-2014-5388 on Ubuntu 14.04 LTS (trusty) - low.
    2014-11-15
    BACK
    fabrice_bellard qemu 0.8.2
    ibm powerkvm 2.1