5 matches found
SUSE CVE-2020-29443
ideatapicmdreplyend in hw/ide/atapi.c in QEMU 5.1.0 allows out-of-bounds read access because a buffer index is not validated...
Oracle Linux 7 : qemu-kvm (ELSA-2021-2322)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-2322 advisory. 1.5.3-175.el79.4 - kvm-ide-atapi-check-logical-block-address-and-read-size-.patch bz1917449 - Resolves: bz1917449 CVE-2020-29443 qemu-kvm: QEMU: ide: atapi: OOB...
Design/Logic Flaw
ideatapicmdreplyend in hw/ide/atapi.c in QEMU 5.1.0 allows out-of-bounds read access because a buffer index is not validated...
CVE-2020-29443
CVE-2020-29443 affects QEMU, specifically the ATAPI read path: ide_atapi_cmd_reply_end in hw/ide/atapi.c. The underlying issue is an unvalidated buffer index, causing out-of-bounds read access. Documented impact is host QEMU process reliability risk (potential crash) due to this condition. Multip...
CVE-2020-29443
ideatapicmdreplyend in hw/ide/atapi.c in QEMU 5.1.0 allows out-of-bounds read access because a buffer index is not validated...