Lucene search
Ziming zhang from Codesafe Team of Legendsec at Qi'anxin GroupZDI-20-1005HistoryAug 17, 2020 - 12:00 a.m.
QEMU SLiRP Networking Out-Of-Bounds Read Information Disclosure Vulnerability
2020-08-1700:00:00
ziming zhang from Codesafe Team of Legendsec at Qi'anxin Group
www.zerodayinitiative.com
29
EPSS
0.001
Percentile
30.3%
This vulnerability allows local attackers to execute arbitrary code on affected installations of QEMU. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the handling of SLiRP networking. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute code in the context of the hypervisor.
Related
suse
suse
Security update for slirp4netns (important)
2020-07-18 00:00:00
Security update for slirp4netns (important)
2020-07-18 00:00:00
Security update for qemu (moderate)
2021-07-14 00:00:00
ubuntucve
ubuntucve
CVE-2020-10756
2020-07-09 00:00:00
CVE-2021-20295
2022-04-01 00:00:00
nessus
nessus
SUSE SLES15 Security Update : slirp4netns (SUSE-SU-2020:1915-1)
2020-07-16 00:00:00
openSUSE Security Update : slirp4netns (openSUSE-2020-994)
2020-07-20 00:00:00
openSUSE Security Update : slirp4netns (openSUSE-2020-987)
2020-07-20 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: libslirp-4.3.1-1.fc32
2020-07-15 01:20:08
alpinelinux
alpinelinux
CVE-2020-10756
2020-07-09 16:15:13
nvd
nvd
CVE-2020-10756
2020-07-09 16:15:13
CVE-2021-20295
2022-04-01 23:15:08
ibm
ibm
cvelist
cvelist
CVE-2020-10756
2020-07-09 15:34:52
CVE-2021-20295
2022-04-01 22:17:46
ubuntu
ubuntu
libslirp vulnerability
2020-07-27 00:00:00
QEMU vulnerabilities
2020-08-19 00:00:00
redhatcve
redhatcve
CVE-2020-10756
2020-06-01 15:26:39
CVE-2021-20295
2021-03-29 09:15:46
openvas
openvas
openSUSE: Security Advisory for slirp4netns (openSUSE-SU-2020:0987-1)
2020-07-19 00:00:00
Fedora: Security Advisory for libslirp (FEDORA-2020-8c0b966c16)
2020-07-15 00:00:00
Ubuntu: Security Advisory (USN-4437-1)
2020-07-28 00:00:00
cve
cve
CVE-2020-10756
2020-07-09 16:15:13
CVE-2021-20295
2022-04-01 23:15:08
veracode
veracode
Information Disclosure
2020-09-21 06:27:40
prion
prion
Design/Logic Flaw
2020-07-09 16:15:00
Security feature bypass
2022-04-01 23:15:00
osv
osv
CVE-2020-10756
2020-07-09 16:15:13
Important: virt:rhel security update
2020-09-29 08:09:34
Moderate: virt:rhel and virt-devel:rhel security update
2021-04-05 16:17:13
debiancve
debiancve
CVE-2020-10756
2020-07-09 16:15:13
CVE-2021-20295
2022-04-01 23:15:08
almalinux
almalinux
Important: virt:rhel security update
2020-09-29 08:09:34
Moderate: virt:rhel and virt-devel:rhel security update
2021-04-05 16:17:13
Moderate: container-tools:rhel8 security, bug fix, and enhancement update
2020-11-03 12:27:37
redhat
redhat
(RHSA-2021:1064) Moderate: virt:rhel and virt-devel:rhel security update
2021-04-05 16:17:13
(RHSA-2020:3586) Important: virt:8.2 and virt-devel:8.2 security and bug fix update
2020-09-01 09:21:04
(RHSA-2020:4059) Important: virt:rhel security update
2020-09-29 08:09:34
oraclelinux
oraclelinux
virt:ol security update
2020-10-01 00:00:00
virt:ol and virt-devel:rhel security update
2021-04-09 00:00:00
container-tools:ol8 security, bug fix, and enhancement update
2020-11-10 00:00:00
amazon
amazon
Medium: qemu
2020-12-08 21:30:00
rocky
rocky
virt:rhel and virt-devel:rhel security update
2021-04-05 16:17:13
virt:rhel security update
2020-09-29 08:09:34
container-tools:rhel8 security, bug fix, and enhancement update
2020-11-03 12:27:37
debian
debian
[SECURITY] [DSA 4728-1] qemu security update
2020-07-19 18:01:06
[SECURITY] [DLA 2288-1] qemu security update
2020-07-26 11:51:28