tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanages memory, as demonstrated by IRC DCC commands in EMU_IRC. This can cause a heap-based buffer overflow or other out-of-bounds access which can lead to a DoS or potential execute arbitrary code.
References
Configurations
History
14 Feb 2021, 03:50
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2021/02/msg00012.html - Mailing List, Third Party Advisory |
10 Feb 2021, 00:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2020-01-16 23:15
Updated : 2023-12-10 13:13
NVD link : CVE-2020-7039
Mitre link : CVE-2020-7039
CVE.ORG link : CVE-2020-7039
JSON object : View
Products Affected
opensuse
- leap
debian
- debian_linux
libslirp_project
- libslirp
qemu
- qemu
CWE
CWE-787
Out-of-bounds Write