Vulnerability in QEMU's Block Driver for Disk Image Formats and QCOW2 Snapshot Creation

Vulnerability in QEMU's Block Driver for Disk Image Formats and QCOW2 Snapshot Creation

CVE-2014-0147 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Qemu before 1.6.2 block diver for the various disk image formats used by Bochs and for the QCOW version 2 format, are vulnerable to a possible crash caused by signed data types or a logic error while creating QCOW2 snapshots, which leads to incorrectly calling update_refcount() routine.

Learn more about our Web Application Penetration Testing UK.