Debian Bug report logs -
#949731
qemu: CVE-2020-1711: block: iscsi: OOB heap access via an unexpected response of iSCSI Server
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Fri, 24 Jan 2020 09:09:04 U ...
Several security issues were fixed in QEMU ...
Two security issues have been found in the SLiRP networking
implementation of QEMU, a fast processor emulator, which could result
in the execution of arbitrary code or denial of service
For the oldstable distribution (stretch), these problems have been fixed
in version 1:28+dfsg-6+deb9u9
For the stable distribution (buster), these problems have ...
tcp_emu in tcp_subrc in libslirp 410, as used in QEMU 420, mismanages memory, as demonstrated by IRC DCC commands in EMU_IRC This can cause a heap-based buffer overflow or other out-of-bounds access which can lead to a DoS or potential execute arbitrary code (CVE-2020-7039)
An out-of-bounds heap buffer access flaw was found in the way the iS ...
Synopsis
Important: qemu-kvm-rhev security update
Type/Severity
Security Advisory: Important
Topic
An update for qemu-kvm-rhev is now available for Red Hat OpenStack Platform 130 (Queens)Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring ...
Synopsis
Important: qemu-kvm-rhev security, bug fix, and enhancement update
Type/Severity
Security Advisory: Important
Topic
An update for qemu-kvm-rhev is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7 and Red Hat Virtualization Engine 43Red Hat Product Security has rated this ...
Synopsis
Important: qemu-kvm-rhev security, bug fix, and enhancement update
Type/Severity
Security Advisory: Important
Topic
An update for qemu-kvm-rhev is now available for Red Hat Virtualization Engine 42Red Hat Product Security has rated this update as having a security impact of Important A Common Vu ...
Synopsis
Important: qemu-kvm-ma security update
Type/Severity
Security Advisory: Important
Topic
An update for qemu-kvm-ma is now available for Red Hat Enterprise Linux 75 Extended Update SupportRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability ...
Synopsis
Important: qemu-kvm-ma security update
Type/Severity
Security Advisory: Important
Topic
An update for qemu-kvm-ma is now available for Red Hat Enterprise Linux 77 Extended Update SupportRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability ...
Synopsis
Important: qemu-kvm-rhev security update
Type/Severity
Security Advisory: Important
Topic
An update for qemu-kvm-rhev is now available for Red Hat OpenStack Platform 100 (Newton)Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring ...
Synopsis
Important: virt:81 and virt-devel:81 security and enhancement update
Type/Severity
Security Advisory: Important
Topic
An update for the virt:81 and virt-devel:81 modules is now available for Advanced Virtualization for RHEL 811Red Hat Product Security has rated this update as having a securi ...
Synopsis
Important: qemu-kvm-rhev security update
Type/Severity
Security Advisory: Important
Topic
An update for qemu-kvm-rhev is now available for Red Hat OpenStack Platform 130 (Queens)Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring ...
Synopsis
Important: virt:rhel security update
Type/Severity
Security Advisory: Important
Topic
An update for the virt:rhel and virt-devel:rhel modules is now available for Red Hat Enterprise Linux 80 Update Services for SAP SolutionsRed Hat Product Security has rated this update as having a security impac ...
Synopsis
Important: qemu-kvm-ma security update
Type/Severity
Security Advisory: Important
Topic
An update for qemu-kvm-ma is now available for Red Hat Enterprise Linux 76 Extended Update SupportRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability ...
An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU handled a response coming from an iSCSI server while checking the status of a Logical Address Block (LBA) in an iscsi_co_block_status() routine A remote user could use this flaw to crash the QEMU process, resulting in a denial of service or potential execu ...