iscsi_aio_ioctl_cb in block/iscsi.c in QEMU 4.1.0 has a heap-based buffer over-read that may disclose unrelated information from process memory to an attacker.
A heap buffer overflow flaw was found in the iSCSI support of QEMU This flaw could lead to an out-of-bounds read access and possible information disclosure from the QEMU process memory to a malicious guest The highest threat from this vulnerability is to data confidentiality (CVE-2020-11947)
An infinite loop flaw was found in the e1000e NIC emul ...
Hello all,
A heap buffer overflow was found in the QEMU block driver for iSCSI
images This flaw could lead to an out-of-bounds read access and
possible information disclosure from the QEMU process memory to a
malicious guest The highest threat from this vulnerability is to data
confidentiality
Upstream fix:
gitqemuorg/?p=qemugit;a=c ...