Main Vulnerability Database SB2021022235

SB2021022235 - Ubuntu update for qemu

Published: February 22, 2021

Security Bulletin ID SB2021022235

Severity

Medium

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Adjecent network

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Out-of-bounds write (CVE-ID: CVE-2020-13754)

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a boundary error when processing untrusted input in hw/pci/msix.c. A local user on the guest operating system can send specially crafted address in an msi-x mmio operation, trick the victim into opening it using the affected software, trigger out-of-bounds write and execute arbitrary code.

Remediation

Install update from vendor's website.

References

https://ubuntu.com/security/notices/USN-4467-3

Vulnerable Software

Ubuntu: 16.04 - 20.10
qemu-system-x86-xen (Ubuntu package): before 1:4.2-3ubuntu6.14
qemu-system-x86-microvm (Ubuntu package): before 1:4.2-3ubuntu6.14
qemu-system-x86 (Ubuntu package): before 1:2.5+dfsg-5ubuntu10.51
qemu-system-sparc (Ubuntu package): before 1:2.5+dfsg-5ubuntu10.51
qemu-system-s390x (Ubuntu package): before 1:2.5+dfsg-5ubuntu10.51
qemu-system-ppc (Ubuntu package): before 1:2.5+dfsg-5ubuntu10.51
qemu-system-misc (Ubuntu package): before 1:2.5+dfsg-5ubuntu10.51
qemu-system-mips (Ubuntu package): before 1:2.5+dfsg-5ubuntu10.51
qemu-system-arm (Ubuntu package): before 1:2.5+dfsg-5ubuntu10.51
qemu-system (Ubuntu package): before 1:2.5+dfsg-5ubuntu10.51
qemu (Ubuntu package): before 1:2.5+dfsg-5ubuntu10.51
qemu-system-aarch64 (Ubuntu package): before 1:2.5+dfsg-5ubuntu10.51

SB2021022235 - Ubuntu update for qemu

Breakdown by Severity

Description

Remediation

References

Please verify you're human