Wind River Support Network

HomeDefectsLIN1021-249
Fixed

LIN1021-249 : Security Advisory - qemu - CVE-2020-15859

Created: May 24, 2021    Updated: Feb 14, 2022
Resolved Date: Jan 10, 2022
Found In Version: 10.21.20.1
Fix Version: 10.21.20.7
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace

Description

QEMU 4.2.0 has a use-after-free in hw/net/e1000e_core.c because a guest OS user can trigger an e1000e packet with the data's address set to the e1000e's MMIO address.

CVEs


Live chat
Online