hw/net/tulip.c in QEMU 4.2.0 has a buffer overflow during the copying of tx/rx buffers because the frame size is not validated against the r/w data length.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2020/04/06/1 | Mailing List Third Party Advisory |
https://lists.gnu.org/archive/html/qemu-devel/2020-03/msg08322.html | Mailing List Third Party Advisory |
https://security.gentoo.org/glsa/202005-02 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-04-06T15:39:56
Updated: 2020-05-13T00:06:31
Reserved: 2020-03-30T00:00:00
Link: CVE-2020-11102
JSON object: View
NVD Information
Status : Modified
Published: 2020-04-06T16:15:13.347
Modified: 2020-05-13T01:15:12.020
Link: CVE-2020-11102
JSON object: View
Redhat Information
No data.
CWE