Your submission was sent successfully! Close

CVE-2018-18438

Published: 19 October 2018

Qemu has integer overflows because IOReadHandler and its associated functions use a signed integer data type for a size value.

Priority

Low

CVSS 3 base score: 5.5

Status

Package Release Status
qemu
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 20.04 LTS (Focal Fossa) Not vulnerable

Ubuntu 18.04 LTS (Bionic Beaver) Not vulnerable

Ubuntu 16.04 ESM (Xenial Xerus) Not vulnerable

Ubuntu 14.04 ESM (Trusty Tahr) Not vulnerable

Patches:
Other: https://lists.gnu.org/archive/html/qemu-devel/2018-10/msg02396.html
Other: https://lists.gnu.org/archive/html/qemu-devel/2018-10/msg02402.html
qemu-kvm
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 20.04 LTS (Focal Fossa) Does not exist

Ubuntu 18.04 LTS (Bionic Beaver) Does not exist

Ubuntu 16.04 ESM (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Notes

AuthorNote
mdeslaur
as of 2020-05-13, proposed fix not commited
sbeattie
Red Hat asserts that they have audited the code in question
and that no code paths can lead to an integer overflow.
mdeslaur
marking as not-affected, as there is no indication this leads
to a security issue.

References

Bugs