Improper Check for Unusual or Exceptional Conditions Affecting qemu package, versions <1:5.0-1
Snyk CVSS
Threat Intelligence
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-DEBIANUNSTABLE-QEMU-540345
- published 31 Dec 2019
- disclosed 31 Dec 2019
Introduced: 31 Dec 2019
CVE-2019-20175 Open this link in a new tabHow to fix?
Upgrade Debian:unstable
qemu
to version 1:5.0-1 or higher.
NVD Description
Note: Versions mentioned in the description apply only to the upstream qemu
package and not the qemu
package as distributed by Debian
.
See How to fix?
for Debian:unstable
relevant fixed versions and status.
An issue was discovered in ide_dma_cb() in hw/ide/core.c in QEMU 2.4.0 through 4.2.0. The guest system can crash the QEMU process in the host system via a special SCSI_IOCTL_SEND_COMMAND. It hits an assertion that implies that the size of successful DMA transfers there must be a multiple of 512 (the size of a sector). NOTE: a member of the QEMU security team disputes the significance of this issue because a "privileged guest user has many ways to cause similar DoS effect, without triggering this assert.
References
- https://security-tracker.debian.org/tracker/CVE-2019-20175
- https://lists.nongnu.org/archive/html/qemu-devel/2019-07/msg01651.html
- https://lists.nongnu.org/archive/html/qemu-devel/2019-07/msg03869.html
- https://lists.nongnu.org/archive/html/qemu-devel/2019-11/msg00597.html
- https://lists.nongnu.org/archive/html/qemu-devel/2019-11/msg02165.html
- https://www.mail-archive.com/qemu-devel@nongnu.org/msg667396.html
- https://www.mail-archive.com/qemu-devel%40nongnu.org/msg667396.html