Vulnerability Name:

CVE-2020-11947 (CCN-194133)

Assigned:2020-04-18
Published:2020-04-18
Updated:2021-02-18
Summary:iscsi_aio_ioctl_cb in block/iscsi.c in QEMU 4.1.0 has a heap-based buffer over-read that may disclose unrelated information from process memory to an attacker.
CVSS v3 Severity:3.8 Low (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N)
3.3 Low (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
6.2 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)
5.4 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): None
Availibility (A): None
3.8 Low (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N)
3.3 Low (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
4.9 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-125
CWE-122
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2020-11947

Source: MLIST
Type: Mailing List, Patch, Third Party Advisory
[oss-security] 20210113 CVE-2020-11947 QEMU: heap buffer overflow in iSCSI block driver may lead to information disclosure

Source: XF
Type: UNKNOWN
qemu-cve202011947-info-disc(194133)

Source: CCN
Type: QEMU GIT Repository
block/iscsi:fix heap-buffer-overflow in iscsi_aio_ioctl_cb

Source: MISC
Type: Patch, Vendor Advisory
https://git.qemu.org/?p=qemu.git;a=commit;h=ff0507c239a246fd7215b31c5658fc6a3ee1e4c5

Source: CONFIRM
Type: Third Party Advisory
https://security.netapp.com/advisory/ntap-20210212-0001/

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2020-11947

Vulnerable Configuration:Configuration 1:
  • cpe:/a:qemu:qemu:4.1.0:-:*:*:*:*:*:*

    • Configuration RedHat 1:
  • cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:*

    • Configuration RedHat 2:
  • cpe:/a:redhat:enterprise_linux:8::appstream:*:*:*:*:*

    • Configuration RedHat 3:
  • cpe:/a:redhat:enterprise_linux:8::crb:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:qemu:qemu:4.1.0:-:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:8013
    P
    		go1.19-1.19.9-150000.1.31.1 on GA media (Moderate)
    2023-06-20
    oval:org.opensuse.security:def:3560
    P
    		libXi6-1.7.4-18.6.1 on GA media (Moderate)
    2022-06-28
    oval:org.opensuse.security:def:94672
    P
    		liboath-devel-2.6.2-1.15 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:5943
    P
    		Security update for mariadb (Moderate)
    2021-12-30
    oval:org.opensuse.security:def:99440
    P
    		 (Moderate)
    2021-12-06
    oval:org.opensuse.security:def:102204
    P
    		Security update for mariadb (Moderate)
    2021-09-03
    oval:org.opensuse.security:def:101385
    P
    		nut-2.7.4-4.72 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:38199
    P
    		Security update for kvm (Important)
    2021-08-06
    oval:org.opensuse.security:def:40423
    P
    		Security update for kvm (Important)
    2021-08-06
    oval:org.opensuse.security:def:44853
    P
    		Security update for kvm (Important)
    2021-08-06
    oval:org.opensuse.security:def:45897
    P
    		Security update for kvm (Important)
    2021-08-03
    oval:org.opensuse.security:def:41467
    P
    		Security update for kvm (Important)
    2021-08-03
    oval:org.opensuse.security:def:6284
    P
    		Security update for caribou (Important)
    2021-06-10
    oval:org.opensuse.security:def:99639
    P
    		 (Important)
    2021-06-01
    oval:com.redhat.rhsa:def:20211762
    P
    		RHSA-2021:1762: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update (Moderate)
    2021-05-18
    oval:org.opensuse.security:def:30064
    P
    		Security update for qemu (Important)
    2021-04-22
    oval:org.opensuse.security:def:55887
    P
    		Security update for qemu (Important)
    2021-04-22
    oval:org.opensuse.security:def:30184
    P
    		Security update for qemu (Important)
    2021-04-22
    oval:org.opensuse.security:def:82557
    P
    		Security update for qemu (Important)
    2021-04-22
    oval:org.opensuse.security:def:56007
    P
    		Security update for qemu (Important)
    2021-04-22
    oval:org.opensuse.security:def:83271
    P
    		Security update for qemu (Important)
    2021-04-22
    oval:org.opensuse.security:def:29350
    P
    		Security update for qemu (Important)
    2021-04-22
    oval:org.opensuse.security:def:55173
    P
    		Security update for qemu (Important)
    2021-04-22
    oval:org.opensuse.security:def:83391
    P
    		Security update for qemu (Important)
    2021-04-22
    oval:org.opensuse.security:def:33893
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:98851
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:57430
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:86071
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:9690
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:92490
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:125518
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:69631
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:32071
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:59716
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:88414
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:23550
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:84127
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:93194
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:8935
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:91901
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:34409
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:99046
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:57894
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:86535
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:51538
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:96857
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:10061
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:92689
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:126689
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:69830
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:99945
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:32898
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:60232
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:89113
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:23885
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:84584
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:9307
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:92096
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:99241
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:31152
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:58721
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:87362
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:51873
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:96858
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:10241
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:92888
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:127086
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:8562
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:70201
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:33635
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:89371
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:56975
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:85616
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:9491
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:92291
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:69447
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:31607
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:59458
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:88102
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:93041
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:8740
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:70381
    P
    		Security update for qemu (Important)
    2021-04-16
    oval:org.opensuse.security:def:111243
    P
    		Security update for qemu (Important)
    2021-03-01
    oval:org.opensuse.security:def:67032
    P
    		Security update for qemu (Important)
    2021-02-19
    oval:org.opensuse.security:def:109450
    P
    		Security update for qemu (Important)
    2021-02-19
    oval:org.opensuse.security:def:96094
    P
    		Security update for qemu (Important)
    2021-02-19
    oval:org.opensuse.security:def:76100
    P
    		Security update for qemu (Important)
    2021-02-19
    oval:org.opensuse.security:def:102784
    P
    		Security update for qemu (Important)
    2021-02-19
    oval:org.opensuse.security:def:67373
    P
    		Security update for qemu (Important)
    2021-02-19
    oval:org.opensuse.security:def:108051
    P
    		Security update for qemu (Important)
    2021-02-19
    oval:org.opensuse.security:def:76441
    P
    		Security update for qemu (Important)
    2021-02-19
    oval:org.opensuse.security:def:117565
    P
    		Security update for qemu (Important)
    2021-02-19
    oval:org.opensuse.security:def:69102
    P
    		Security update for qemu (Important)
    2021-02-19
    oval:org.opensuse.security:def:64649
    P
    		Security update for qemu (Important)
    2021-02-19
    oval:org.opensuse.security:def:108870
    P
    		Security update for qemu (Important)
    2021-02-19
    oval:org.opensuse.security:def:95491
    P
    		Security update for qemu (Important)
    2021-02-19
    oval:org.opensuse.security:def:118546
    P
    		Security update for qemu (Important)
    2021-02-19
    oval:org.opensuse.security:def:97224
    P
    		Security update for qemu (Important)
    2021-02-19
    oval:org.opensuse.security:def:73771
    P
    		Security update for qemu (Important)
    2021-02-19
    BACK
    qemu qemu 4.1.0 -
    qemu qemu 4.1.0