The vulnerability of the rom_copy function in hw/core/loader.c of the QEMU hardware emulation software allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the romcopy function in hw/core/loader.c of the QEMU hardware emulation software is related to the execution of operations within the acceptable data buffer boundaries. Exploiting this vulnerability can allow a remote attacker to gain access to confidential data, compromise i...

Arbitrary Code Execution

qemu is vulnerable to arbitrary code execution. The romcopy in hw/core/loader.c does not validate the relationship between two addresses and allows attackers to perform an invalid memory copy operation...

CVE-2020-13765

romcopy in hw/core/loader.c in QEMU 4.0 and 4.1.0 does not validate the relationship between two addresses, which allows attackers to trigger an invalid memory copy operation...

CVE-2020-13765

romcopy in hw/core/loader.c in QEMU 4.0 and 4.1.0 does not validate the relationship between two addresses, which allows attackers to trigger an invalid memory copy operation...

Design/Logic Flaw

romcopy in hw/core/loader.c in QEMU 4.0 and 4.1.0 does not validate the relationship between two addresses, which allows attackers to trigger an invalid memory copy operation...

CVE-2020-13765

CVE-2020-13765 affects QEMU 4.0 and 4.1.0, where rom_copy() in hw/core/loader.c does not validate the relationship between two addresses, enabling an out-of-bounds memory copy and potentially code execution. Public advisories (e.g., Oracle Linux ELSA entries and MiracleLinux AXSA-2021-1371) indic...

CVE-2020-13765

romcopy in hw/core/loader.c in QEMU 4.0 and 4.1.0 does not validate the relationship between two addresses, which allows attackers to trigger an invalid memory copy operation...

CVE-2020-13765

romcopy in hw/core/loader.c in QEMU 4.0 and 4.1.0 does not validate the relationship between two addresses, which allows attackers to trigger an invalid memory copy operation...