6 matches found
Denial Of Service (DoS)
QEMU is vulnerable to denial of service DoS. es1370transferaudio in hw/audio/es1370.c does not properly validate the frame count, which allows guest OS users to trigger an out-of-bounds access during an es1370write operation...
Debian DLA-2262-1 : qemu security update
Several vulnerabilities were fixed in qemu, a fast processor emulator. CVE-2020-1983 slirp: Fix use-after-free in ipreass. CVE-2020-13361 es1370transferaudio in hw/audio/es1370.c allowed guest OS users to trigger an out-of-bounds access during an es1370write operation. CVE-2020-13362...
CVE-2020-13361
In QEMU 5.0.0 and earlier, es1370transferaudio in hw/audio/es1370.c does not properly validate the frame count, which allows guest OS users to trigger an out-of-bounds access during an es1370write operation...
CVE-2020-13361
In QEMU 5.0.0 and earlier, es1370transferaudio in hw/audio/es1370.c does not properly validate the frame count, which allows guest OS users to trigger an out-of-bounds access during an es1370write operation...
CVE-2020-13361
CVE-2020-13361 affects QEMU: es1370_transfer_audio in hw/audio/es1370.c does not properly validate the frame count, allowing guest OS users to trigger an out-of-bounds access during an es1370_write() on QEMU 5.0.0 and earlier. The issue is documented across multiple advisories and vendor response...
CVE-2020-13361
In QEMU 5.0.0 and earlier, es1370transferaudio in hw/audio/es1370.c does not properly validate the frame count, which allows guest OS users to trigger an out-of-bounds access during an es1370write operation...