CVE-2020-11102

CVE-2020-11102

EPSS 1.9%

hw/net/tulip.c in QEMU 4.2.0 has a buffer overflow during the copying of tx/rx buffers because the frame size is not validated against the r/w data length.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://lists.gnu.org/archive/html/qemu-devel/2020-03/msg08322.html https://security.gentoo.org/glsa/202005-02 http://www.openwall.com/lists/oss-security/2020/04/06/1