CVE-2019-12068 — Infinite Loop in Qemu
Severity
3.8LOWNVD
EPSS
0.1%
top 75.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedSep 24
Latest updateMay 24
Description
In QEMU 1:4.1-1, 1:2.1+dfsg-12+deb8u6, 1:2.8+dfsg-6+deb9u8, 1:3.1+dfsg-8~deb10u1, 1:3.1+dfsg-8+deb10u2, and 1:2.1+dfsg-12+deb8u12 (fixed), when executing script in lsi_execute_script(), the LSI scsi adapter emulator advances 's->dsp' index to read next opcode. This can lead to an infinite loop if the next opcode is empty. Move the existing loop exit after 10k iterations so that it covers no-op opcodes as well.
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:LExploitability: 2.0 | Impact: 1.4
Affected Packages5 packages
Also affects: Ubuntu Linux 14.04, 16.04, 18.04, 19.04, 19.10
Patches
🔴Vulnerability Details
4📋Vendor Advisories
4💬Community
4Bugzilla▶
CVE-2019-12068 xen: qemu: scsi: lsi: potential infinite loop when executing script in lsi_execute_script [fedora-all]↗2019-12-12
Bugzilla▶
CVE-2019-12068 qemu: scsi: lsi: potential infinite loop when executing script in lsi_execute_script [epel-7]↗2019-11-18
Bugzilla▶
CVE-2019-12068 qemu: scsi: lsi: potential infinite loop when executing script in lsi_execute_script [fedora-all]↗2019-11-18
Bugzilla▶
CVE-2019-12068 qemu: scsi: lsi: potential infinite loop when executing script in lsi_execute_script↗2019-11-18