Debian Bug report logs -
#974687
qemu: CVE-2020-25707
Package:
src:qemu;
Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Fri, 13 Nov 2020 19:09:01 UTC
Severity: important
Tags: security, upstream
Found in version qemu/1 ...
A heap buffer overflow flaw was found in the iSCSI support of QEMU This flaw could lead to an out-of-bounds read access and possible information disclosure from the QEMU process memory to a malicious guest The highest threat from this vulnerability is to data confidentiality (CVE-2020-11947)
An infinite loop flaw was found in the e1000e NIC emul ...