AVG-914

Package qemu
Status Fixed
Severity High
Type arbitrary code execution
Affected 3.1.0-2
Fixed 4.0.0-1
Current 4.0.0-3 [extra]
Ticket None
Created Thu Feb 21 13:19:12 2019
Issue Severity Remote Type Description
CVE-2019-3812 High No Arbitrary code execution
QEMU, through version 2.10 and through version 3.1.0, is vulnerable to an out-of-bounds read of up to 128 bytes in the hw/i2c/i2c-ddc.c:i2c_ddc() function....