Wind River Support Network

HomeDefectsLIN1019-5093
Fixed

LIN1019-5093 : Security Advisory - qemu - CVE-2020-15859

Created: Jul 22, 2020    Updated: Feb 5, 2024
Resolved Date: Feb 1, 2024
Found In Version: 10.19.45.1
Severity: Standard
Applicable for: Wind River Linux LTS 19
Component/s: Userspace

Description

QEMU 4.2.0 has a use-after-free in hw/net/e1000e_core.c because a guest OS user can trigger an e1000e packet with the data's address set to the e1000e's MMIO address.

CREATE(Triage):(User=admin) CVE-2020-15859 (https://nvd.nist.gov/vuln/detail/CVE-2020-15859)

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube