CVE-2014-3461

NameCVE-2014-3461
Descriptionhw/usb/bus.c in QEMU 1.6.2 allows remote attackers to execute arbitrary code via crafted savevm data, which triggers a heap-based buffer overflow, related to "USB post load checks."
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs739589

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
qemu (PTS)bullseye1:5.2+dfsg-11+deb11u3fixed
bullseye (security)1:5.2+dfsg-11+deb11u2fixed
bookworm1:7.2+dfsg-7+deb12u6fixed
trixie1:8.2.4+ds-1fixed
sid1:9.0.1+ds-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
qemusourcesqueeze(unfixed)end-of-life
qemusource(unstable)2.1+dfsg-1739589
qemu-kvmsourcesqueeze(unfixed)end-of-life
qemu-kvmsource(unstable)(unfixed)

Notes

[wheezy] - qemu <no-dsa> (Too intrusive to backport, minor risk)
[wheezy] - qemu-kvm <no-dsa> (Too intrusive to backport, minor risk)
[squeeze] - qemu <end-of-life> (Unsupported in squeeze-lts)
[squeeze] - qemu-kvm <end-of-life> (Unsupported in squeeze-lts)
http://article.gmane.org/gmane.comp.emulators.qemu/272322

Search for package or bug name: Reporting problems