CVE-2020-17380

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 30-01-2021 07:15

Last modified: - 14-10-2022 05:48

Total changes: - 6

Description

A heap-based buffer overflow was found in QEMU through 5.0.0 in the SDHCI device emulation support. It could occur while doing a multi block SDMA transfer via the sdhci_sdma_transfer_multi_blocks() routine in hw/sd/sdhci.c. A guest user or process could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code with privileges of the QEMU process on the host.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L

Low

Attack complexity

Local

Attack vector

Low

Availability

Low

Confidentiality

Low

Integrity

Low

Privileges required

Changed

Scope

None

User interaction

6.3

Base score

2.0

3.7

Exploitability score

Impact score

Verification logic

Reference

https://lists.nongnu.org/archive/html/qemu-devel/2020-09/msg01175.html
https://bugzilla.redhat.com/show_bug.cgi?id=1862167
[oss-security] 20210309 CVE-2021-3409 QEMU: sdhci: incomplete fix for CVE-2020-17380/CVE-2020-25085-Mailing List, Patch, Third Party Advisory
https://security.netapp.com/advisory/ntap-20210312-0003/
[debian-lts-announce] 20210410 [SECURITY] [DLA 2623-1] qemu security update-Mailing List, Third Party Advisory

Keywords

CVE-2020-17380

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2020-17380

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures