CVE-2020-11947

Published: Dec 31, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

iscsi_aio_ioctl_cb in block/iscsi.c in QEMU 4.1.0 has a heap-based buffer over-read that may disclose unrelated information from process memory to an attacker.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=ff0507c239a246fd7215b31c5658fc6a3ee1e4c5

x_refsource_MISC

[oss-security] 20210113 CVE-2020-11947 QEMU: heap buffer overflow in iSCSI block driver may lead to information disclosure

mailing-list

x_refsource_MLIST

https://security.netapp.com/advisory/ntap-20210212-0001/

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-11947

Description

Affected Products

References