UBUNTU-CVE-2014-3672

Source
https://ubuntu.com/security/CVE-2014-3672
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2014/UBUNTU-CVE-2014-3672.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2014-3672
Related
Published
2016-05-25T15:59:00Z
Modified
2016-05-25T15:59:00Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

The qemu implementation in libvirt before 1.3.0 and Xen allows local guest OS users to cause a denial of service (host disk consumption) by writing to stdout or stderr.

References

Affected packages

Ubuntu:14.04:LTS / xen

Package

Name
xen
Purl
pkg:deb/ubuntu/xen?arch=src?distro=trusty

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.2-0ubuntu0.14.04.6

Affected versions

4.*

4.3.0-1ubuntu1
4.3.0-1ubuntu2
4.3.0-1ubuntu3
4.3.0-1ubuntu4
4.3.0-1ubuntu5
4.4.0-0ubuntu3
4.4.0-0ubuntu4
4.4.0-0ubuntu5
4.4.0-0ubuntu5.1
4.4.0-0ubuntu5.2
4.4.1-0ubuntu0.14.04.1
4.4.1-0ubuntu0.14.04.2
4.4.1-0ubuntu0.14.04.3
4.4.1-0ubuntu0.14.04.4
4.4.1-0ubuntu0.14.04.5
4.4.1-0ubuntu0.14.04.6
4.4.2-0ubuntu0.14.04.1
4.4.2-0ubuntu0.14.04.2
4.4.2-0ubuntu0.14.04.3
4.4.2-0ubuntu0.14.04.4
4.4.2-0ubuntu0.14.04.5

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "negligible",
    "binaries": [
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "libxen-4.4"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "libxen-4.4-dbgsym"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "libxen-dev"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "libxen-ocaml"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "libxen-ocaml-dbgsym"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "libxen-ocaml-dev"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "libxenstore3.0"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "libxenstore3.0-dbgsym"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "xen-hypervisor-4.1-amd64"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "xen-hypervisor-4.3-amd64"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "xen-hypervisor-4.3-armhf"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "xen-hypervisor-4.4-amd64"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "xen-hypervisor-4.4-arm64"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "xen-hypervisor-4.4-armhf"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "xen-system-amd64"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "xen-system-arm64"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "xen-system-armhf"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "xen-utils-4.4"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "xen-utils-4.4-dbgsym"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "xen-utils-common"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "xenstore-utils"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.6",
            "binary_name": "xenstore-utils-dbgsym"
        }
    ]
}

Ubuntu:Pro:14.04:LTS / libvirt

Package

Name
libvirt
Purl
pkg:deb/ubuntu/libvirt?arch=src?distro=trusty/esm

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.1.1-0ubuntu8
1.1.1-0ubuntu9
1.1.4-0ubuntu2
1.1.4-0ubuntu3
1.1.4-0ubuntu4
1.1.4-0ubuntu5
1.2.0-0ubuntu1
1.2.0-0ubuntu2
1.2.0-0ubuntu3
1.2.1-0ubuntu1
1.2.1-0ubuntu2
1.2.1-0ubuntu3
1.2.1-0ubuntu4
1.2.1-0ubuntu5
1.2.1-0ubuntu7
1.2.1-0ubuntu8
1.2.1-0ubuntu9
1.2.1-0ubuntu10
1.2.2-0ubuntu1
1.2.2-0ubuntu2
1.2.2-0ubuntu3
1.2.2-0ubuntu4
1.2.2-0ubuntu5
1.2.2-0ubuntu6
1.2.2-0ubuntu7
1.2.2-0ubuntu8
1.2.2-0ubuntu9
1.2.2-0ubuntu10
1.2.2-0ubuntu11
1.2.2-0ubuntu12
1.2.2-0ubuntu13
1.2.2-0ubuntu13.1
1.2.2-0ubuntu13.1.1
1.2.2-0ubuntu13.1.2
1.2.2-0ubuntu13.1.4
1.2.2-0ubuntu13.1.5
1.2.2-0ubuntu13.1.6
1.2.2-0ubuntu13.1.7
1.2.2-0ubuntu13.1.8
1.2.2-0ubuntu13.1.9
1.2.2-0ubuntu13.1.10
1.2.2-0ubuntu13.1.12
1.2.2-0ubuntu13.1.14
1.2.2-0ubuntu13.1.16
1.2.2-0ubuntu13.1.17
1.2.2-0ubuntu13.1.20
1.2.2-0ubuntu13.1.21
1.2.2-0ubuntu13.1.22
1.2.2-0ubuntu13.1.23
1.2.2-0ubuntu13.1.25
1.2.2-0ubuntu13.1.26
1.2.2-0ubuntu13.1.27
1.2.2-0ubuntu13.1.28
1.2.2-0ubuntu13.1.28+esm1

Ecosystem specific

{
    "ubuntu_priority": "negligible"
}

Ubuntu:Pro:14.04:LTS / qemu

Package

Name
qemu
Purl
pkg:deb/ubuntu/qemu?arch=src?distro=trusty/esm

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.5.0+dfsg-3ubuntu5
1.5.0+dfsg-3ubuntu6
1.6.0+dfsg-2ubuntu1
1.6.0+dfsg-2ubuntu2
1.6.0+dfsg-2ubuntu3
1.6.0+dfsg-2ubuntu4
1.7.0+dfsg-2ubuntu1
1.7.0+dfsg-2ubuntu2
1.7.0+dfsg-2ubuntu3
1.7.0+dfsg-2ubuntu4
1.7.0+dfsg-2ubuntu5
1.7.0+dfsg-2ubuntu7
1.7.0+dfsg-2ubuntu8
1.7.0+dfsg-2ubuntu9
1.7.0+dfsg-3ubuntu1~ppa1
1.7.0+dfsg-3ubuntu1
1.7.0+dfsg-3ubuntu2
1.7.0+dfsg-3ubuntu3
1.7.0+dfsg-3ubuntu4
1.7.0+dfsg-3ubuntu5
1.7.0+dfsg-3ubuntu6
1.7.0+dfsg-3ubuntu7

2.*

2.0.0~rc1+dfsg-0ubuntu1
2.0.0~rc1+dfsg-0ubuntu2
2.0.0~rc1+dfsg-0ubuntu3
2.0.0~rc1+dfsg-0ubuntu3.1
2.0.0+dfsg-2ubuntu1
2.0.0+dfsg-2ubuntu1.1
2.0.0+dfsg-2ubuntu1.2
2.0.0+dfsg-2ubuntu1.3
2.0.0+dfsg-2ubuntu1.5
2.0.0+dfsg-2ubuntu1.6
2.0.0+dfsg-2ubuntu1.7
2.0.0+dfsg-2ubuntu1.8
2.0.0+dfsg-2ubuntu1.9
2.0.0+dfsg-2ubuntu1.10
2.0.0+dfsg-2ubuntu1.11
2.0.0+dfsg-2ubuntu1.13
2.0.0+dfsg-2ubuntu1.14
2.0.0+dfsg-2ubuntu1.15
2.0.0+dfsg-2ubuntu1.16
2.0.0+dfsg-2ubuntu1.17
2.0.0+dfsg-2ubuntu1.18
2.0.0+dfsg-2ubuntu1.19
2.0.0+dfsg-2ubuntu1.20
2.0.0+dfsg-2ubuntu1.21
2.0.0+dfsg-2ubuntu1.22
2.0.0+dfsg-2ubuntu1.24
2.0.0+dfsg-2ubuntu1.25
2.0.0+dfsg-2ubuntu1.26
2.0.0+dfsg-2ubuntu1.27
2.0.0+dfsg-2ubuntu1.28
2.0.0+dfsg-2ubuntu1.29
2.0.0+dfsg-2ubuntu1.30
2.0.0+dfsg-2ubuntu1.31
2.0.0+dfsg-2ubuntu1.32
2.0.0+dfsg-2ubuntu1.33
2.0.0+dfsg-2ubuntu1.34
2.0.0+dfsg-2ubuntu1.35
2.0.0+dfsg-2ubuntu1.36
2.0.0+dfsg-2ubuntu1.38
2.0.0+dfsg-2ubuntu1.39
2.0.0+dfsg-2ubuntu1.40
2.0.0+dfsg-2ubuntu1.41
2.0.0+dfsg-2ubuntu1.42
2.0.0+dfsg-2ubuntu1.43
2.0.0+dfsg-2ubuntu1.44
2.0.0+dfsg-2ubuntu1.45
2.0.0+dfsg-2ubuntu1.46
2.0.0+dfsg-2ubuntu1.47
2.0.0+dfsg-2ubuntu1.47+esm1
2.0.0+dfsg-2ubuntu1.47+esm2
2.0.0+dfsg-2ubuntu1.47+esm3

Ecosystem specific

{
    "ubuntu_priority": "negligible"
}

Ubuntu:16.04:LTS / libvirt

Package

Name
libvirt
Purl
pkg:deb/ubuntu/libvirt?arch=src?distro=xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.3.1-1ubuntu10

Affected versions

1.*

1.2.16-2ubuntu11
1.2.16-2ubuntu12
1.2.16-2ubuntu13
1.2.16-2ubuntu14
1.2.21-2ubuntu1
1.2.21-2ubuntu3
1.2.21-2ubuntu4
1.2.21-2ubuntu5
1.2.21-2ubuntu7
1.2.21-2ubuntu8
1.2.21-2ubuntu9
1.2.21-2ubuntu10
1.3.1-1ubuntu1
1.3.1-1ubuntu2
1.3.1-1ubuntu3
1.3.1-1ubuntu4
1.3.1-1ubuntu6
1.3.1-1ubuntu9

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "negligible",
    "binaries": [
        {
            "binary_version": "1.3.1-1ubuntu10",
            "binary_name": "libvirt-bin"
        },
        {
            "binary_version": "1.3.1-1ubuntu10",
            "binary_name": "libvirt-bin-dbgsym"
        },
        {
            "binary_version": "1.3.1-1ubuntu10",
            "binary_name": "libvirt-dev"
        },
        {
            "binary_version": "1.3.1-1ubuntu10",
            "binary_name": "libvirt-dev-dbgsym"
        },
        {
            "binary_version": "1.3.1-1ubuntu10",
            "binary_name": "libvirt-doc"
        },
        {
            "binary_version": "1.3.1-1ubuntu10",
            "binary_name": "libvirt0"
        },
        {
            "binary_version": "1.3.1-1ubuntu10",
            "binary_name": "libvirt0-dbg"
        },
        {
            "binary_version": "1.3.1-1ubuntu10",
            "binary_name": "libvirt0-dbgsym"
        }
    ]
}

Ubuntu:Pro:16.04:LTS / qemu

Package

Name
qemu
Purl
pkg:deb/ubuntu/qemu?arch=src?distro=esm-infra/xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:2.*

1:2.3+dfsg-5ubuntu9
1:2.3+dfsg-5ubuntu10
1:2.4+dfsg-4ubuntu1
1:2.4+dfsg-4ubuntu2
1:2.4+dfsg-4ubuntu3
1:2.4+dfsg-5ubuntu3
1:2.5+dfsg-1ubuntu2
1:2.5+dfsg-1ubuntu3
1:2.5+dfsg-1ubuntu4
1:2.5+dfsg-1ubuntu5
1:2.5+dfsg-5ubuntu1
1:2.5+dfsg-5ubuntu2
1:2.5+dfsg-5ubuntu4
1:2.5+dfsg-5ubuntu6
1:2.5+dfsg-5ubuntu7
1:2.5+dfsg-5ubuntu10
1:2.5+dfsg-5ubuntu10.1
1:2.5+dfsg-5ubuntu10.2
1:2.5+dfsg-5ubuntu10.3
1:2.5+dfsg-5ubuntu10.4
1:2.5+dfsg-5ubuntu10.5
1:2.5+dfsg-5ubuntu10.6
1:2.5+dfsg-5ubuntu10.7
1:2.5+dfsg-5ubuntu10.8
1:2.5+dfsg-5ubuntu10.9
1:2.5+dfsg-5ubuntu10.10
1:2.5+dfsg-5ubuntu10.11
1:2.5+dfsg-5ubuntu10.13
1:2.5+dfsg-5ubuntu10.14
1:2.5+dfsg-5ubuntu10.15
1:2.5+dfsg-5ubuntu10.16
1:2.5+dfsg-5ubuntu10.20
1:2.5+dfsg-5ubuntu10.21
1:2.5+dfsg-5ubuntu10.22
1:2.5+dfsg-5ubuntu10.24
1:2.5+dfsg-5ubuntu10.25
1:2.5+dfsg-5ubuntu10.26
1:2.5+dfsg-5ubuntu10.28
1:2.5+dfsg-5ubuntu10.29
1:2.5+dfsg-5ubuntu10.30
1:2.5+dfsg-5ubuntu10.31
1:2.5+dfsg-5ubuntu10.32
1:2.5+dfsg-5ubuntu10.33
1:2.5+dfsg-5ubuntu10.34
1:2.5+dfsg-5ubuntu10.35
1:2.5+dfsg-5ubuntu10.36
1:2.5+dfsg-5ubuntu10.37
1:2.5+dfsg-5ubuntu10.38
1:2.5+dfsg-5ubuntu10.39
1:2.5+dfsg-5ubuntu10.40
1:2.5+dfsg-5ubuntu10.41
1:2.5+dfsg-5ubuntu10.42
1:2.5+dfsg-5ubuntu10.43
1:2.5+dfsg-5ubuntu10.44
1:2.5+dfsg-5ubuntu10.45
1:2.5+dfsg-5ubuntu10.46
1:2.5+dfsg-5ubuntu10.47
1:2.5+dfsg-5ubuntu10.48
1:2.5+dfsg-5ubuntu10.49
1:2.5+dfsg-5ubuntu10.51
1:2.5+dfsg-5ubuntu10.51+esm1
1:2.5+dfsg-5ubuntu10.51+esm2

Ecosystem specific

{
    "ubuntu_priority": "negligible"
}