PT-2020-5091 · Qemu+7 · Qemu+7

Felipe Franciosi

+2

·

Published

2020-01-24

·

Updated

2026-06-09

·

CVE-2020-1711

CVSS v3.1

7.7

High

VectorAV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H
Name of the Vulnerable Software and Affected Versions QEMU versions 2.12.0 through 4.2.1
Description The issue is related to an out-of-bounds heap buffer access flaw in the iSCSI Block driver. This flaw can be exploited by a remote user to potentially execute arbitrary code or cause a denial of service by crashing the QEMU process. The exploitation is tied to how the iSCSI server response is handled during the checking of a Logical Address Block (LBA) status in the iscsi co block status() routine.
Recommendations For QEMU versions 2.12.0 through 4.2.1, update to version 4.2.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the iSCSI Block driver to minimize the risk of exploitation.

Fix

DoS

Out of bounds Read

Heap Based Buffer Overflow

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-122CWE-787

Related Identifiers

ALSA-2020:1358
ALT-PU-2020-1912
ALT-PU-2020-2431
BDU:2020-05682
CESA-2020_1358
CVE-2020-1711
DLA-2144-1
DLA-2373-1
DSA-4616-1
OPENSUSE-SU-2020:0468-1
OPENSUSE-SU-2020_0468-1
OPENSUSE-SU-2024:11287-1
RHSA-2020:0669
RHSA-2020:0730
RHSA-2020:0731
RHSA-2020:0773
RHSA-2020:1150
RHSA-2020:1216
RHSA-2020:1296
RHSA-2020:1300
RHSA-2020:1352
RHSA-2020:1358
RHSA-2020:1505
RHSA-2020:2472
RHSA-2020_1150
RHSA-2020_1358
RLSA-2020:1358
SUSE-SU-2020:0844-1
SUSE-SU-2020:0845-1
SUSE-SU-2020:1501-1
SUSE-SU-2020:1514-1
SUSE-SU-2020:1523-1
SUSE-SU-2020:1526-1
SUSE-SU-2020:1538-1
SUSE-SU-2020_1501-1
SUSE-SU-2020_1514-1
SUSE-SU-2020_1523-1
SUSE-SU-2020_1526-1
SUSE-SU-2020_1538-1
USN-4283-1
USN-8412-1

Affected Products

Alt Linux
Almalinux
Centos
Qemu
Red Hat
Rocky Linux
Suse
Ubuntu