Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.4
CVSSv2

CVE-2020-25085

Published: 25/09/2020 Updated: 23/09/2022
CVSS v2 Base Score: 4.4 | Impact Score: 6.4 | Exploitability Score: 3.4
CVSS v3 Base Score: 5 | Impact Score: 3.7 | Exploitability Score: 0.8
VMScore: 392
Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

QEMU 5.0.0 has a heap-based Buffer Overflow in flatview_read_continue in exec.c because hw/sd/sdhci.c mishandles a write operation in the SDHC_BLKSIZE case.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

qemu qemu 5.0.0

debian debian linux 9.0

debian debian linux 10.0

Vendor Advisories

Debian CVElist Bug Report Logs: CVE-2020-25085
Debian Bug report logs - #970540 CVE-2020-25085 Package: qemu; Maintainer for qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Source for qemu is src:qemu (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Fri, 18 Sep 2020 09:15:03 UTC Severity: important Tags: upstream F ...

Mailing Lists

Full Disclosure: CVE-2021-3409 QEMU: sdhci: incomplete fix for CVE-2020-17380/CVE-2020-25085
Hello, QEMU upstream commit [1] was supposed to fix CVE-2020-17380 and CVE-2020-25085, both involving a heap buffer overflow in the SDHCI controller emulation code In fact, commit [1] turned out to be incomplete, in that it was still possible to reproduce the same issue(s) with specially crafted input, inducing a bogus transfer and subsequent out ...
Full Disclosure: CVE-2020-25085 QEMU: sdhci: out-of-bounds access issue while doing multi block SDMA
Hello, Upstream patches: ----------------- -> listsnongnuorg/archive/html/qemu-devel/2020-09/msg00733html -> listsnongnuorg/archive/html/qemu-devel/2020-09/msg01439html * This issue was reported by Sergej Schumilo, Cornelius Aschermann, Simon Wrner of Ruhr-University Bochum * 'CVE-2020-25085' assigned via htt ...

References

CWE-787http://www.openwall.com/lists/oss-security/2020/09/16/6https://lists.nongnu.org/archive/html/qemu-devel/2020-09/msg00733.htmlhttps://bugs.launchpad.net/qemu/+bug/1892960https://security.netapp.com/advisory/ntap-20201009-0005/https://lists.debian.org/debian-lts-announce/2020/11/msg00047.htmlhttp://www.openwall.com/lists/oss-security/2021/03/09/1https://lists.debian.org/debian-lts-announce/2022/09/msg00008.htmlhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970540https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248CVE-2024-3110CVE-2024-5552CVE-2024-29415HTML injectionCVE-2024-3095TCPtype confusionCVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook