PT-2020-5947 · Qemu+5 · Qemu+5

Published

2020-08-14

Updated

2026-06-09

CVE-2020-17380

CVSS v3.1

6.3

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions: QEMU versions through 5.0.0

Description: A heap-based buffer overflow was found in the SDHCI device emulation support. It could occur while doing a multi block SDMA transfer via the sdhci sdma transfer multi blocks() routine in hw/sd/sdhci.c. A guest user or process could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code with privileges of the QEMU process on the host.

Recommendations: For QEMU versions through 5.0.0, as a temporary workaround, consider disabling the sdhci sdma transfer multi blocks() function until a patch is available. Restrict access to the hw/sd/sdhci.c module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

ALT-PU-2020-2595

ALT-PU-2021-1767

ALT-PU-2021-1880

ALT-PU-2021-1964

BDU:2021-02091

CVE-2020-17380

DLA-2623-1

DLA-3362-1

OESA-2021-1072

OPENSUSE-SU-2021:1942-1

OPENSUSE-SU-2021_1942-1

OPENSUSE-SU-2022_3768-1

OPENSUSE-SU-2024:11287-1

SUSE-SU-2021:1942-1

SUSE-SU-2022:3768-1

SUSE-SU-2022_3768-1

SUSE-SU-2023:0761-1

USN-4650-1

USN-8412-1

Affected Products

Alt Linux

Astra Linux

Linuxmint

Qemu

Suse

Ubuntu

PT-2020-5947 · Qemu+5 · Qemu+5

CVE-2020-17380

Weakness Enumeration

Related Identifiers

Affected Products

References · 265