AVG-1110 log

Package qemu
Status Fixed
Severity High
Type multiple issues
Affected 4.2.0-2
Fixed 5.0.0-1
Current 5.0.0-7 [extra]
Ticket None
Created Fri Mar 6 09:01:23 2020
Issue Severity Remote Type Description
CVE-2020-7039 High No Arbitrary code execution
A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the tcp_emu() routine while...
CVE-2020-1711 High No Arbitrary code execution
An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU handled a response coming from an iSCSI server while checking...
CVE-2019-20382 Low Yes Denial of service
A memory leak has been found in in the way VNC display driver of QEMU <= 4.2.0 handled connection disconnect, when ZRLE, Tight encoding is enabled. It...
Date Advisory Package Description
07 May 2020 ASA-202005-6 qemu multiple issues
References
https://www.openwall.com/lists/oss-security/2020/03/05/1