讓您全面了解并上手億速云產品
常見入門級使用教程
對外 API 開發文檔中心
您歷史提交的工單
您的每一條意見,我們都嚴謹處理
您的每一條建議,我們都認真對待
CNNVD-ID編號 | CNNVD-202002-293 | CVE編號 | CVE-2020-1711 |
發布時間 | 2020-02-03 | 更新時間 | 2020-09-14 |
漏洞類型 | 緩沖區錯誤 | 漏洞來源 | Ubuntu,Debian,Red Hat,Gentoo |
危險等級 | 中危 | 威脅類型 | 遠程 |
廠商 | N/A |
QEMU(Quick Emulator)是法國法布里斯-貝拉(Fabrice Bellard)軟件開發者的一套模擬處理器軟件。該軟件具有速度快、跨平臺等特點。
QEMU 4.2.1之前的2.12.0版本中的iSCSI Block驅動程序存在緩沖區錯誤漏洞。遠程攻擊者可利用該漏洞造成QEMU進程崩潰,導致拒絕服務或以QEMU進程的權限執行任意代碼。
目前廠商已發布升級補丁以修復漏洞,詳情請關注廠商主頁:
https://www.qemu.org/
來源:REDHAT
來源:GENTOO
來源:CONFIRM
鏈接:https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1711
來源:MISC
鏈接:https://lists.gnu.org/archive/html/qemu-devel/2020-01/msg05535.html
來源:UBUNTU
來源:MLIST
鏈接:https://lists.debian.org/debian-lts-announce/2020/03/msg00017.html
來源:MLIST
鏈接:https://lists.debian.org/debian-lts-announce/2020/09/msg00013.html
來源:REDHAT
來源:SUSE
鏈接:http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00007.html
來源:MISC
來源:REDHAT
來源:REDHAT
來源:www.debian.org
來源:www.auscert.org.au
來源:packetstormsecurity.com
鏈接:https://packetstormsecurity.com/files/157066/Red-Hat-Security-Advisory-2020-1300-01.html
來源:packetstormsecurity.com
鏈接:https://packetstormsecurity.com/files/158016/Red-Hat-Security-Advisory-2020-2472-01.html
來源:www.auscert.org.au
來源:www.auscert.org.au
來源:www.auscert.org.au
來源:packetstormsecurity.com
鏈接:https://packetstormsecurity.com/files/157301/Red-Hat-Security-Advisory-2020-1505-01.html
來源:www.auscert.org.au
來源:www.auscert.org.au
來源:vigilance.fr
鏈接:https://vigilance.fr/vulnerability/QEMU-memory-corruption-via-iSCSI-Block-Driver-31422
來源:www.auscert.org.au
來源:www.auscert.org.au
來源:packetstormsecurity.com
鏈接:https://packetstormsecurity.com/files/156187/Debian-Security-Advisory-4616-1.html
來源:www.auscert.org.au
來源:nvd.nist.gov
來源:packetstormsecurity.com
鏈接:https://packetstormsecurity.com/files/157153/Red-Hat-Security-Advisory-2020-1358-01.html
來源:www.auscert.org.au
來源:www.auscert.org.au
來源:packetstormsecurity.com
鏈接:https://packetstormsecurity.com/files/157685/Gentoo-Linux-Security-Advisory-202005-02.html
來源:www.auscert.org.au
來源:packetstormsecurity.com
鏈接:https://packetstormsecurity.com/files/156636/Red-Hat-Security-Advisory-2020-0731-01.html
來源:packetstormsecurity.com
鏈接:https://packetstormsecurity.com/files/156417/Ubuntu-Security-Notice-USN-4283-1.html
暫無