Lucene search
OracleLinuxELSA-2020-4056HistorySep 30, 2020 - 12:00 a.m.
qemu-kvm security update
2020-09-3000:00:00
linux.oracle.com
48
5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L
4.4 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
[0.12.1.2-2.506.el6_10.8]
- kvm-qemu-kvm-QEMU-usb-check-RNDIS-message-length.patch [bz#1869684]
- kvm-qemu-kvm-QEMU-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869684]
- Resolves: bz#1869684
(CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-6.10.z])
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 6 | src | qemu-kvm | < 0.12.1.2-2.506.el6_10.8 | qemu-kvm-0.12.1.2-2.506.el6_10.8.src.rpm |
| oracle linux | 6 | i686 | qemu-guest-agent | < 0.12.1.2-2.506.el6_10.8 | qemu-guest-agent-0.12.1.2-2.506.el6_10.8.i686.rpm |
| oracle linux | 6 | src | qemu-kvm | < 0.12.1.2-2.506.el6_10.8 | qemu-kvm-0.12.1.2-2.506.el6_10.8.src.rpm |
| oracle linux | 6 | x86_64 | qemu-guest-agent | < 0.12.1.2-2.506.el6_10.8 | qemu-guest-agent-0.12.1.2-2.506.el6_10.8.x86_64.rpm |
| oracle linux | 6 | x86_64 | qemu-img | < 0.12.1.2-2.506.el6_10.8 | qemu-img-0.12.1.2-2.506.el6_10.8.x86_64.rpm |
| oracle linux | 6 | x86_64 | qemu-kvm | < 0.12.1.2-2.506.el6_10.8 | qemu-kvm-0.12.1.2-2.506.el6_10.8.x86_64.rpm |
| oracle linux | 6 | x86_64 | qemu-kvm-tools | < 0.12.1.2-2.506.el6_10.8 | qemu-kvm-tools-0.12.1.2-2.506.el6_10.8.x86_64.rpm |
Related
prion
prion
Cross site scripting
2020-08-31 18:15:00
nessus
nessus
EulerOS 2.0 SP8 : qemu (EulerOS-SA-2020-2157)
2020-09-29 00:00:00
RHEL 7 : qemu-kvm (RHSA-2020:4053)
2020-11-18 00:00:00
Virtuozzo 6 : qemu-guest-agent / qemu-img / qemu-kvm / etc (VZLSA-2020-4056)
2020-12-22 00:00:00
gentoo
gentoo
Xen: Buffer overflow
2020-09-29 00:00:00
QEMU: Multiple vulnerabilities
2020-11-11 00:00:00
centos
centos
qemu security update
2020-11-09 13:15:26
qemu security update
2020-11-06 22:05:12
redhat
redhat
(RHSA-2020:4078) Important: qemu-kvm-ma security update
2020-09-29 21:18:57
(RHSA-2020:4056) Important: qemu-kvm security update
2020-09-29 08:07:42
(RHSA-2020:4054) Important: qemu-kvm security update
2020-09-29 08:07:34
openvas
openvas
Fedora: Security Advisory for xen (FEDORA-2020-3689b67b53)
2020-09-11 00:00:00
Fedora: Security Advisory for xen (FEDORA-2020-eeb29955ed)
2020-09-16 00:00:00
CentOS: Security Advisory for qemu-guest-agent (CESA-2020:4056)
2020-11-10 00:00:00
cve
cve
CVE-2020-14364
2020-08-31 18:15:00
alpinelinux
alpinelinux
CVE-2020-14364
2020-08-31 18:15:00
ubuntu
ubuntu
QEMU vulnerability
2020-09-17 00:00:00
QEMU vulnerabilities
2021-02-02 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-09-11 21:53:46
fedora
fedora
[SECURITY] Fedora 31 Update: xen-4.12.3-4.fc31
2020-09-10 17:34:33
[SECURITY] Fedora 32 Update: xen-4.13.1-5.fc32
2020-09-15 16:17:33
f5
f5
K09081535 : QEMU vulnerability CVE-2020-14364
2020-12-15 00:00:00
ibm
ibm
osv
osv
CVE-2020-14364
2020-08-31 18:15:12
qemu vulnerability
2020-09-17 11:10:51
Important: virt:rhel security update
2020-09-29 08:09:34
ubuntucve
ubuntucve
CVE-2020-14364
2020-08-24 00:00:00
cbl_mariner
cbl_mariner
CVE-2020-14364 affecting package qemu-kvm 4.2.0-48
2020-11-30 19:31:04
debiancve
debiancve
CVE-2020-14364
2020-08-31 18:15:00
xen
xen
QEMU: usb: out-of-bounds r/w access issue
2020-08-24 12:00:00
redhatcve
redhatcve
CVE-2020-14364
2020-08-24 13:04:32
huawei
huawei
oraclelinux
oraclelinux
qemu-kvm security update
2020-10-08 00:00:00
virt:ol security update
2020-10-01 00:00:00
qemu security update
2021-02-08 00:00:00
rocky
rocky
virt:rhel security update
2020-09-29 08:09:34
almalinux
almalinux
Important: virt:rhel security update
2020-09-29 08:09:34
citrix
citrix
Citrix Hypervisor Security Update
2020-08-24 04:00:00
amazon
amazon
Important: qemu
2020-11-09 21:04:00
Important: qemu-kvm
2020-11-14 01:23:00
suse
suse
Security update for qemu (important)
2020-10-13 00:00:00
Security update for qemu (important)
2021-07-11 00:00:00
Security update for qemu (moderate)
2021-07-14 00:00:00
debian
debian
[SECURITY] [DSA 4760-1] qemu security update
2020-09-06 18:00:48
[SECURITY] [DLA 2373-1] qemu security update
2020-09-13 18:47:47
archlinux
archlinux
[ASA-202012-26] qemu: multiple issues
2020-12-16 00:00:00
5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L
4.4 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
Related for ELSA-2020-4056