Back to search
CVE-2018-18954
Published: Nov 15, 2018
Modified: Aug 5, 2024
PUBLISHED
Description
The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
USN-3826-1
vendor-advisory
x_refsource_UBUNTU
[oss-security] 20181107 CVE-2018-18954 QEMU: ppc64: Out-of-bounds r/w stack access in pnv_lpc_do_eccb
mailing-list
x_refsource_MLIST
105920
vdb-entry
x_refsource_BID
[Qemu-devel] 20181103 [PATCH v2] ppc/pnv: check size before data buffer access
mailing-list
x_refsource_MLIST
openSUSE-SU-2019:1074
vendor-advisory
x_refsource_SUSE
DSA-4454
vendor-advisory
x_refsource_DEBIAN
20190531 [SECURITY] [DSA 4454-1] qemu security update
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now