CVE-2020-13791 — Out-of-bounds Read in Qemu

CWE-125 — Out-of-bounds Read8 documents7 sources

Severity

5.5MEDIUMNVD

EPSS

0.2%

top 61.39%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Qemu Debian Qemu Msrc CBL Mariner 1.0 ARM +2 more

Timeline

PublishedJun 4

Latest updateMay 24

Description

hw/pci/pci.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access by providing an address near the end of the PCI configuration space.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages6 packages

▶debiandebian/qemu< qemu 1:5.0-6 (bookworm)

▶Debianqemu/qemu< 1:5.0-6+3

▶NVDqemu/qemu5.0.1

▶msrcmsrc/cm1_qemu-kvm_4.2.0-21_on_cbl_mariner_1.0

▶msrcmsrc/cbl_mariner_1.0_arm

Patches

Patch: lists.gnu.org ↗Patch: www.openwall.com ↗Patch: lists.gnu.org ↗

🔴Vulnerability Details

GHSA

GHSA-9j9x-v7hw-3v8f: hw/pci/pci↗2022-05-24

▶

OSV

CVE-2020-13791: hw/pci/pci↗2020-06-04

▶

📋Vendor Advisories

Microsoft

hw/pci/pci.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access by providing an address near the end of the PCI configuration space.↗2020-06-09

▶

Red Hat

QEMU: ati-vga: OOB access while reading PCI configuration may lead to DoS↗2020-06-03

▶

Debian

CVE-2020-13791: qemu - hw/pci/pci.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds acc...↗2020

▶

💬Community

Bugzilla

CVE-2020-13791 QEMU: ati-vga: OOB access while reading PCI configuration may lead to DoS↗2020-06-04

▶

Bugzilla

CVE-2020-13791 qemu: ati-vga: OOB access while reading PCI configuration may lead to DoS [fedora-all]↗2020-06-04

▶