What is the vulnerability ID for this issue?

The vulnerability ID for this issue is CVE-2018-20815.

What is the severity of CVE-2018-20815?

CVE-2018-20815 has a severity rating of high.

Which software versions are affected by CVE-2018-20815?

Various versions of QEMU are affected, including 1:2.11+dfsg-1ubuntu7.13, 1:2.12+dfsg-3ubuntu8.7, 1:3.1+dfsg-2ubuntu4, and more.

How can I fix CVE-2018-20815?

To fix CVE-2018-20815, update to a version of QEMU that includes the necessary security patches, such as 1:2.11+dfsg-1ubuntu7.13 or 1:2.12+dfsg-3ubuntu8.7.

Where can I find more information about CVE-2018-20815?

More information about CVE-2018-20815 can be found in the references provided, including the commitdiff links and the OSS Security mailing list.

Vulnerability/
CVE-2018-20815

critical

9.8

CWE

119

27/3/2019

31/5/2019

21/11/2024

CVE-2018-20815: Buffer Overflow

First published: Wed Mar 27 2019(Updated: )

A heap buffer overflow issue was found in the load_device_tree() function of QEMU, which is invoked to load device tree blob at boot time. It occurs due to device tree size manipulation before buffer allocation, which could overflow a signed int type. A user/process could use this flaw to potentially execute arbitrary code on a host system with privileges of the QEMU process. Upstream patch: --------------- -> <a href="https://git.qemu.org/?p=qemu.git;a=commitdiff;h=da885fe1ee8b4589047484bd7fa05a4905b52b17">https://git.qemu.org/?p=qemu.git;a=commitdiff;h=da885fe1ee8b4589047484bd7fa05a4905b52b17</a> -> <a href="https://git.qemu.org/?p=qemu.git;a=commitdiff;h=065e6298a75164b4347682b63381dbe752c2b156">https://git.qemu.org/?p=qemu.git;a=commitdiff;h=065e6298a75164b4347682b63381dbe752c2b156</a> Reference: ---------- -> <a href="https://www.openwall.com/lists/oss-security/2019/03/27/1">https://www.openwall.com/lists/oss-security/2019/03/27/1</a>

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
QEMU KVM	=3.1.0
debian/qemu		1:5.2+dfsg-11+deb11u3 1:5.2+dfsg-11+deb11u2 1:7.2+dfsg-7+deb12u12 1:9.2.0+ds-5

Remedy

https://git.qemu.org/?p=qemu.git;a=commitdiff;h=da885fe1ee8b4589047484bd7fa05a4905b52b17

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2018-20815.
What is the severity of CVE-2018-20815?
CVE-2018-20815 has a severity rating of high.
Which software versions are affected by CVE-2018-20815?
Various versions of QEMU are affected, including 1:2.11+dfsg-1ubuntu7.13, 1:2.12+dfsg-3ubuntu8.7, 1:3.1+dfsg-2ubuntu4, and more.
How can I fix CVE-2018-20815?
To fix CVE-2018-20815, update to a version of QEMU that includes the necessary security patches, such as 1:2.11+dfsg-1ubuntu7.13 or 1:2.12+dfsg-3ubuntu8.7.
Where can I find more information about CVE-2018-20815?
More information about CVE-2018-20815 can be found in the references provided, including the commitdiff links and the OSS Security mailing list.

agent/type
collector/launchpad-cve
source/Launchpad
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2018-20815
agent/author
agent/severity
agent/weakness
collector/mitre-cve
source/MITRE
collector/usn-cve
source/Ubuntu
agent/references
agent/remedy
agent/description
agent/event
agent/first-publish-date
agent/trending
agent/last-modified-date
agent/source
collector/nvd-cve
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/nvd-index
agent/tags
agent/softwarecombine
collector/security-tracker-debian
source/Debian
vendor/qemu
canonical/qemu kvm
version/qemu kvm/3.1.0
package-manager/debian