CVE-2020-1711 — Heap-based Buffer Overflow in Qemu
Severity
6.0MEDIUMNVD
CNA7.7
EPSS
0.6%
top 31.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedFeb 11
Latest updateMay 24
Description
An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU versions 2.12.0 before 4.2.1 handled a response coming from an iSCSI server while checking the status of a Logical Address Block (LBA) in an iscsi_co_block_status() routine. A remote user could use this flaw to crash the QEMU process, resulting in a denial of service or potential execution of arbitrary code with privileges of the QEMU process on the host.
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:LExploitability: 1.8 | Impact: 3.7
Affected Packages6 packages
Also affects: Debian Linux 8.0, 9.0, Enterprise Linux 7.0, 8.0
Patches
🔴Vulnerability Details
4GHSA▶
GHSA-8gvc-95pj-x5r8: An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU versions 2↗2022-05-24
OSV▶
CVE-2020-1711: An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU versions 2↗2020-02-11
CVEList▶
CVE-2020-1711: An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU versions 2↗2020-02-11
📋Vendor Advisories
4Microsoft▶
An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU versions 2.12.0 before 4.2.1 handled a response coming from an iSCSI server while checking the status of a ↗2020-02-11
Debian▶
CVE-2020-1711: qemu - An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block dr...↗2020
💬Community
4Bugzilla▶
CVE-2020-1711 xen: QEMU: block: iscsi: OOB heap access via an unexpected response of iSCSI Server [fedora-all]↗2020-01-23
Bugzilla▶
CVE-2020-1711 qemu: block: iscsi: OOB heap access via an unexpected response of iSCSI Server [fedora-all]↗2020-01-23
Bugzilla▶
CVE-2020-1711 QEMU: block: iscsi: OOB heap access via an unexpected response of iSCSI Server↗2020-01-23