CVE-2019-12068
First published: Tue Sep 24 2019(Updated: )
In QEMU 1:4.1-1, 1:2.1+dfsg-12+deb8u6, 1:2.8+dfsg-6+deb9u8, 1:3.1+dfsg-8~deb10u1, 1:3.1+dfsg-8+deb10u2, and 1:2.1+dfsg-12+deb8u12 (fixed), when executing script in lsi_execute_script(), the LSI scsi adapter emulator advances 's->dsp' index to read next opcode. This can lead to an infinite loop if the next opcode is empty. Move the existing loop exit after 10k iterations so that it covers no-op opcodes as well.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| QEMU qemu | =1\-4.1-1 | |
| QEMU qemu | =1\-2.1\+dfsg-12\+deb8u6 | |
| Debian Debian Linux | =8.0 | |
| QEMU qemu | =1\-2.8\+dfsg-6\+deb9u8 | |
| Debian Debian Linux | =9.0 | |
| QEMU qemu | =1\-3.1\+dfsg-8\+deb10u2 | |
| QEMU qemu | =1\-3.1\+dfsg-8\~deb10u1 | |
| Debian Debian Linux | =10.0 | |
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =16.04 | |
| Canonical Ubuntu Linux | =18.04 | |
| Canonical Ubuntu Linux | =19.04 | |
| Canonical Ubuntu Linux | =19.10 | |
| openSUSE Leap | =15.0 | |
| openSUSE Leap | =15.1 | |
| All of | ||
| QEMU qemu | =1\-2.1\+dfsg-12\+deb8u6 | |
| Debian Debian Linux | =8.0 | |
| All of | ||
| QEMU qemu | =1\-2.8\+dfsg-6\+deb9u8 | |
| Debian Debian Linux | =9.0 | |
| All of | ||
| Any of | ||
| QEMU qemu | =1\-3.1\+dfsg-8\+deb10u2 | |
| QEMU qemu | =1\-3.1\+dfsg-8\~deb10u1 | |
| Debian Debian Linux | =10.0 | |
| debian/qemu | 1:5.2+dfsg-11+deb11u3 1:5.2+dfsg-11+deb11u2 1:7.2+dfsg-7+deb12u7 1:9.2.0+ds-2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00038.html
- https://git.qemu.org/?p=qemu.git;a=commit;h=de594e47659029316bbf9391efb79da0a1a08e08
- https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html
- https://lists.debian.org/debian-lts-announce/2020/07/msg00020.html
- https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01518.html
- https://security-tracker.debian.org/tracker/CVE-2019-12068
- https://usn.ubuntu.com/4191-1/
- https://usn.ubuntu.com/4191-2/
- https://www.debian.org/security/2020/dsa-4665
- https://launchpad.net/bugs/cve/CVE-2019-12068
- https://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=de594e47659029316bbf9391efb79da0a1a08e08
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068
- https://nvd.nist.gov/vuln/detail/CVE-2019-12068
- https://ubuntu.com/security/CVE-2019-12068
Frequently Asked Questions
What is the severity of CVE-2019-12068?
The severity of CVE-2019-12068 is low.
How does CVE-2019-12068 affect QEMU?
CVE-2019-12068 affects QEMU versions 1:4.1-1, 1:2.1+dfsg-12+deb8u6, 1:2.8+dfsg-6+deb9u8, 1:3.1+dfsg-8~deb10u1, 1:3.1+dfsg-8+deb10u2, and 1:2.1+dfsg-12+deb8u12 (fixed).
How can I fix CVE-2019-12068 in QEMU?
To fix CVE-2019-12068 in QEMU, update to version 1:4.1-2 or later.
Is Debian Linux affected by CVE-2019-12068?
Debian Linux versions 8.0, 9.0, and 10.0 are not vulnerable to CVE-2019-12068.
Where can I find more information about CVE-2019-12068?
More information about CVE-2019-12068 can be found at the following references: - [GIT Commit](https://git.qemu.org/?p=qemu.git;a=commit;h=de594e47659029316bbf9391efb79da0a1a08e08) - [QEMU Development Mailing List](https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01518.html) - [Debian Security Tracker](https://security-tracker.debian.org/tracker/CVE-2019-12068)
- collector/nvd-index
- agent/type
- collector/launchpad-cve
- source/Launchpad
- agent/author
- agent/weakness
- agent/severity
- collector/mitre-cve
- source/MITRE
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/remedy
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- agent/trending
- vendor/qemu
- canonical/qemu qemu
- version/qemu qemu/1\-4.1-1
- version/qemu qemu/1\-2.1\+dfsg-12\+deb8u6
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/8.0
- version/qemu qemu/1\-2.8\+dfsg-6\+deb9u8
- version/debian debian linux/9.0
- version/qemu qemu/1\-3.1\+dfsg-8\+deb10u2
- version/qemu qemu/1\-3.1\+dfsg-8\~deb10u1
- version/debian debian linux/10.0
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/16.04
- version/canonical ubuntu linux/18.04
- version/canonical ubuntu linux/19.04
- version/canonical ubuntu linux/19.10
- vendor/opensuse
- canonical/opensuse leap
- version/opensuse leap/15.0
- version/opensuse leap/15.1
- package-manager/debian