OSV-2023-390 Heap-buffer-overflow in sdhci_write

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=58813 Crash type: Heap-buffer-overflow WRITE 1 Crash state: sdhciwrite memoryregionwriteaccessor memoryregiondispatchwrite...

EulerOS 2.0 SP8 : qemu (EulerOS-SA-2020-2320)

According to the versions of the qemu package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An assertion failure issue was found in the Network Block DeviceNBD Server in all QEMU versions before QEMU 5.0.1. This flaw occurs when an...

CVE-2020-13253

sdwpaddr in hw/sd/sd.c in QEMU 4.2.0 uses an unvalidated address, which leads to an out-of-bounds read during sdhciwrite operations. A guest OS user can crash the QEMU process...

Design/Logic Flaw

sdwpaddr in hw/sd/sd.c in QEMU 4.2.0 uses an unvalidated address, which leads to an out-of-bounds read during sdhciwrite operations. A guest OS user can crash the QEMU process...

CVE-2020-13253

CVE-2020-13253 affects QEMU 4.2.0, where sd_wp_addr in hw/sd/sd.c uses an unvalidated address, causing an out-of-bounds read during sdhci_write() operations. This can allow a guest OS user to crash the QEMU process. The provided documents describe the vulnerability and impact but do not specify a...

PT-2020-6480 · Qemu +4 · Qemu +4

Name of the Vulnerable Software and Affected Versions: QEMU version 4.2.0 Description: The issue is related to an out-of-bounds read in the sd wp addr component of QEMU, specifically in the hw/sd/sd.c file. This occurs during sdhci write operations when an unvalidated address is used. A guest OS...