CVE-2020-10702

Name of the Vulnerable Software and Affected Versions QEMU versions 4.0 through 5.0.0

Description A flaw was found in the implementation of the Pointer Authentication (PAuth) support for ARM. The issue is caused by a general failure of the signature generation process, resulting in every PAuth-enforced pointer being signed with the same signature. This allows a local attacker to obtain the signature of a protected pointer and abuse this flaw to bypass PAuth protection for all programs running on QEMU. The vulnerability may also allow an attacker to access confidential data.

Recommendations For QEMU versions 4.0 through 5.0.0, update to version 5.0.0 or later to resolve the issue. As a temporary workaround, consider disabling the PAuth support until a patch is available. Restrict access to sensitive data and programs running on QEMU to minimize the risk of exploitation.