PT-2020-6201 · Qemu+4 · Qemu+4

Hanqing Zhao

Published

2020-05-28

Updated

2024-06-15

CVE-2020-13362

CVSS v3.1

3.2

Low

Vector

AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions QEMU versions 5.0.0 and earlier QEMU versions 4.2.0

Description The issue is related to an out-of-bounds read in the megasas lookup frame function in hw/scsi/megasas.c. This can be triggered via a crafted reply queue head field from a guest OS user, potentially leading to a denial of service.

Recommendations For QEMU versions 5.0.0 and earlier, update to a version later than 5.0.0 to resolve the issue. For QEMU version 4.2.0, update to a version later than 4.2.0 to resolve the issue. As a temporary workaround, consider restricting access to the megasas lookup frame function in hw/scsi/megasas.c to minimize the risk of exploitation.

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALT-PU-2020-2595

ALT-PU-2021-1880

ALT-PU-2021-1964

BDU:2021-03540

CVE-2020-13362

DLA-2262-1

DLA-2288-1

DSA-4728-1

OPENSUSE-SU-2020:1108-1

OPENSUSE-SU-2020_1108-1

OPENSUSE-SU-2024:11287-1

SUSE-SU-2020:2015-1

SUSE-SU-2021:1240-1

SUSE-SU-2021:1241-1

SUSE-SU-2021:1242-1

SUSE-SU-2021:1244-1

SUSE-SU-2021:1245-1

SUSE-SU-2021:1305-1

SUSE-SU-2021:14704-1

SUSE-SU-2021:14706-1

SUSE-SU-2021_14704-1

USN-4467-1

USN-4467-2

USN-4467-3

Affected Products

Alt Linux

Linuxmint

Qemu

Suse

Ubuntu

PT-2020-6201 · Qemu+4 · Qemu+4

CVE-2020-13362

Weakness Enumeration

Related Identifiers

Affected Products

References · 262