CVE-2020-27617

Related Files

Red Hat Security Advisory 2021-3061-01

Posted Aug 10, 2021

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-3061-01 - Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems. Issues addressed include buffer overflow, denial of service, and out of bounds access vulnerabilities.

tags | advisory, denial of service, overflow, kernel, vulnerability

systems | linux, redhat

advisories | CVE-2020-13754, CVE-2020-27617, CVE-2021-20221, CVE-2021-3416, CVE-2021-3504

SHA-256 | 66e0a1ac543249bbe6d765192ae964d7bdf8592d935524bd9c4a35ee66ca180c

Download | Favorite | View

Ubuntu Security Notice USN-4650-1

Posted Nov 30, 2020

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4650-1 - Alexander Bulekov discovered that QEMU incorrectly handled SDHCI device emulation. An attacker inside the guest could use this issue to cause QEMU to crash, resulting in a denial of service, or possibly execute arbitrary code on the host. In the default installation, when QEMU is used with libvirt, attackers would be isolated by the libvirt AppArmor profile. Sergej Schumilo, Cornelius Aschermann, and Simon Wrner discovered that QEMU incorrectly handled USB device emulation. An attacker inside the guest could use this issue to cause QEMU to crash, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary

systems | linux, ubuntu

advisories | CVE-2020-17380, CVE-2020-25084, CVE-2020-25085, CVE-2020-25624, CVE-2020-25625, CVE-2020-25723, CVE-2020-27616, CVE-2020-27617

SHA-256 | ea01fe69cd26600b57476ee03d48b48a6c3fe133a001952a3d96808636eb4efc

Download | Favorite | View