Qemu before 1.6.2 block diver for the various disk image formats used by Bochs and for the QCOW version 2 format, are vulnerable to a possible crash caused by signed data types or a logic error while creating QCOW2 snapshots, which leads to incorrectly calling update_refcount() routine.
2022-09-29T03:15:11.277
2024-11-21T02:01:28.733
Modified
CVSSv3.1: 6.2 (MEDIUM)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | qemu | qemu | < 1.6.2 | Yes |
| Operating System | fedoraproject | fedora | 20 | Yes |
| Application | redhat | virtualization | 3.0 | Yes |
| Operating System | redhat | enterprise_linux_desktop | 6.0 | Yes |
| Operating System | redhat | enterprise_linux_eus | 6.5 | Yes |
| Operating System | redhat | enterprise_linux_openstack_platform | 5 | Yes |
| Operating System | redhat | enterprise_linux_server | 6.0 | Yes |
| Operating System | redhat | enterprise_linux_server_aus | 6.5 | Yes |
| Operating System | redhat | enterprise_linux_server_tus | 6.5 | Yes |
| Operating System | redhat | enterprise_linux_workstation | 6.0 | Yes |