Showing 1 - 18 of 18

CVE-2020-7039

Status Candidate

Overview

tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanages memory, as demonstrated by IRC DCC commands in EMU_IRC. This can cause a heap-based buffer overflow or other out-of-bounds access which can lead to a DoS or potential execute arbitrary code.

Related Files

Ubuntu Security Notice USN-4632-1: Posted Nov 12, 2020; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4632-1 - It was discovered that the SLiRP networking implementation of the QEMU emulator did not properly manage memory under certain circumstances. An attacker could use this to cause a heap-based buffer overflow or other out- of-bounds access, which can lead to a denial of service or potentially execute arbitrary code. It was discovered that the SLiRP networking implementation of the QEMU emulator misuses snprintf return values. An attacker could use this to cause a denial of service or potentially execute arbitrary code. Various other issues were also addressed.; tags | advisory, denial of service, overflow, arbitrary; systems | linux, ubuntu; advisories | CVE-2020-7039, CVE-2020-8608; SHA-256 | d70710491b9afbed7831436acc6b4cd20956288de37f7423b8f7860816c3bedc; Download | Favorite | View

Red Hat Security Advisory 2020-2730-01: Posted Jun 24, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-2730-01 - KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include an out of bounds access vulnerability.; tags | advisory; systems | linux, redhat; advisories | CVE-2020-7039, CVE-2020-8608; SHA-256 | 8de74c7470b1fcaf3482f20656fa146112016670e278f067b714e6707fc55d2a; Download | Favorite | View

Red Hat Security Advisory 2020-2342-01: Posted Jun 1, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-2342-01 - KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include buffer overflow and out of bounds access vulnerabilities.; tags | advisory, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2019-14378, CVE-2020-7039, CVE-2020-8608; SHA-256 | e543f9fef4963291f074e800e0194dcf8281b6d582e9a925d4bf1a1baa86e1ad; Download | Favorite | View

Gentoo Linux Security Advisory 202005-02: Posted May 13, 2020; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202005-2 - Multiple vulnerabilities have been found in QEMU, the worst of which could result in the arbitrary execution of code. Versions less than 4.2.0-r5 are affected.; tags | advisory, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2020-11102, CVE-2020-1711, CVE-2020-7039; SHA-256 | 15921c9ae8a59d8123ac70b4cd07c28a8b06da9679370458f19f5ef2b3c89b31; Download | Favorite | View

Red Hat Security Advisory 2020-1358-01: Posted Apr 7, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-1358-01 - Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems. Issues addressed include an out of bounds access vulnerability.; tags | advisory, kernel; systems | linux, redhat; advisories | CVE-2020-1711, CVE-2020-7039; SHA-256 | c9a77bbf4ba5eff67132a363b838be50e5f09b3583428979136412710a2be6be; Download | Favorite | View

Red Hat Security Advisory 2020-1360-01: Posted Apr 7, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-1360-01 - The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Issues addressed include an out of bounds access vulnerability.; tags | advisory; systems | linux, redhat; advisories | CVE-2020-7039; SHA-256 | 055cbce2dabffe9c7cbe9225190e8e49f576d6f13d9ea30573b640b26e72259a; Download | Favorite | View

Red Hat Security Advisory 2020-1352-01: Posted Apr 7, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-1352-01 - Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-ma packages provide the user-space component for running virtual machines that use KVM on the IBM z Systems, IBM Power, and 64-bit ARM architectures. Issues addressed include an out of bounds access vulnerability.; tags | advisory, kernel; systems | linux, redhat; advisories | CVE-2020-1711, CVE-2020-7039, CVE-2020-8608; SHA-256 | abab3af6ab91cddd444c056748413aea3ec3b5bb4f82fbfbdf5428e6961aab58; Download | Favorite | View

Red Hat Security Advisory 2020-1351-01: Posted Apr 7, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-1351-01 - Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Issues addressed include an out of bounds access vulnerability.; tags | advisory, kernel; systems | linux, redhat; advisories | CVE-2020-7039, CVE-2020-8608; SHA-256 | 3021f0047dbd6e4ea1771ecc9ae7f6acbba1eeefae5a9383a628b427fcf92d3b; Download | Favorite | View

Red Hat Security Advisory 2020-1344-01: Posted Apr 7, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-1344-01 - Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems. Issues addressed include an out of bounds access vulnerability.; tags | advisory, kernel; systems | linux, redhat; advisories | CVE-2020-7039; SHA-256 | 0c7f50c74ac929f991bc9a8ff68ca395af16822e4c5e213fe6659c9bc038c831; Download | Favorite | View

Red Hat Security Advisory 2020-1300-01: Posted Apr 2, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-1300-01 - KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include an out of bounds access vulnerability.; tags | advisory; systems | linux, redhat; advisories | CVE-2020-1711, CVE-2020-7039, CVE-2020-8608; SHA-256 | 3b3c803f11b4c41a45febe8388c0473da3dde22357cdfbf6ed410e72a987fcf3; Download | Favorite | View

Red Hat Security Advisory 2020-1296-01: Posted Apr 2, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-1296-01 - KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include an out of bounds access vulnerability.; tags | advisory; systems | linux, redhat; advisories | CVE-2020-1711, CVE-2020-7039; SHA-256 | 582a06d1a570f22689b6e0e0554844dd019ec443602dd9afc0ae81f7061759a3; Download | Favorite | View

Red Hat Security Advisory 2020-1261-01: Posted Apr 1, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-1261-01 - The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include an out of bounds access vulnerability.; tags | advisory; systems | linux, redhat; advisories | CVE-2020-7039, CVE-2020-8608; SHA-256 | b2e46d4c0863cdd73ebf6a5739b3b8afcf0274012a3d439df57ae2ac55fbaab1; Download | Favorite | View

Red Hat Security Advisory 2020-1150-01: Posted Apr 1, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-1150-01 - Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-ma packages provide the user-space component for running virtual machines that use KVM on the IBM z Systems, IBM Power, and 64-bit ARM architectures. Issues addressed include an out of bounds access vulnerability.; tags | advisory, kernel; systems | linux, redhat; advisories | CVE-2020-1711, CVE-2020-7039; SHA-256 | b554ce9fed197ecbdf014ae8b6636aa7fdace8c1a71e34ba14da187d8bef9510; Download | Favorite | View

Red Hat Security Advisory 2020-1116-01: Posted Apr 1, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-1116-01 - Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Issues addressed include an out of bounds access vulnerability.; tags | advisory, kernel; systems | linux, redhat; advisories | CVE-2020-7039; SHA-256 | 3d873d6d7c8a816c3915763085763c045ad78e61783966f1c6b2cf7e80a8b3fb; Download | Favorite | View

Red Hat Security Advisory 2020-0889-01: Posted Mar 18, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-0889-01 - The slirp4netns package contains user-mode networking for unprivileged network namespaces. It is required to enable networking for rootless containers. Issues addressed include buffer overflow and use-after-free vulnerabilities.; tags | advisory, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2019-14378, CVE-2019-15890, CVE-2020-7039, CVE-2020-8608; SHA-256 | cb90c6cd9a262933377b552a4fe0e120111a99614cf0f6c9da1cefaa8d581cbd; Download | Favorite | View

Red Hat Security Advisory 2020-0775-01: Posted Mar 10, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-0775-01 - Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Issues addressed include buffer overflow and use-after-free vulnerabilities.; tags | advisory, overflow, kernel, vulnerability; systems | linux, redhat; advisories | CVE-2019-14378, CVE-2019-15890, CVE-2020-7039; SHA-256 | 1bec67f6c9e4cee34c9dd01f43184ed7cec9d7278ef1ba6c863492ae119690b9; Download | Favorite | View

Red Hat Security Advisory 2020-0348-01: Posted Feb 4, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-0348-01 - The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.; tags | advisory; systems | linux, redhat; advisories | CVE-2020-7039; SHA-256 | 2a2d7cceba0e6dc1bcb3c8900cd63fd694bff37a9d9f0f92fc5712d93234d3e2; Download | Favorite | View

Debian Security Advisory 4616-1: Posted Feb 3, 2020; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4616-1 - Two security issues have been found in the SLiRP networking implementation of QEMU, a fast processor emulator, which could result in the execution of arbitrary code or denial of service.; tags | advisory, denial of service, arbitrary; systems | linux, debian; advisories | CVE-2019-15890, CVE-2020-1711, CVE-2020-7039; SHA-256 | c86925d33e285cee87de038a4e6d41f8b66dba7c5d35bbf49853a20cf80e0b49; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 223 files
Ubuntu 57 files
LiquidWorm 23 files
Debian 19 files
indoushka 15 files
Apple 9 files
Google Security Research 5 files
Gentoo 5 files
Chokri Hammedi 3 files
Alter Prime 3 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,158)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,830)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,245)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,969)
UNIX (9,474)
UnixWare (188)
Windows (6,784)
Other

CVE-2020-7039

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems