AVG-1110 log
| Package | qemu |
| Status | Fixed |
| Severity | High |
| Type | multiple issues |
| Affected | 4.2.0-2 |
| Fixed | 5.0.0-1 |
| Current | Removed |
| Ticket | None |
| Created | Fri Mar 6 09:01:23 2020 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2020-7039 | High | No | Arbitrary code execution | A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the tcp_emu() routine while... |
| CVE-2020-1711 | High | No | Arbitrary code execution | An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU handled a response coming from an iSCSI server while checking... |
| CVE-2019-20382 | Low | Yes | Denial of service | A memory leak has been found in in the way VNC display driver of QEMU <= 4.2.0 handled connection disconnect, when ZRLE, Tight encoding is enabled. It... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 07 May 2020 | ASA-202005-6 | qemu | multiple issues |
| References |
|---|
https://www.openwall.com/lists/oss-security/2020/03/05/1 |