Unrated severityNVD Advisory· Published Jul 21, 2020· Updated Aug 4, 2024

CVE-2020-15859

Description

QEMU 4.2.0 has a use-after-free in hw/net/e1000e_core.c because a guest OS user can trigger an e1000e packet with the data's address set to the e1000e's MMIO address.

Affected products

QEMU/QEMUdescription
osv-coords93 versions
pkg:rpm/almalinux/hivex pkg:rpm/almalinux/hivex-devel pkg:rpm/almalinux/libguestfs pkg:rpm/almalinux/libguestfs-bash-completion pkg:rpm/almalinux/libguestfs-benchmarking pkg:rpm/almalinux/libguestfs-devel pkg:rpm/almalinux/libguestfs-gfs2 pkg:rpm/almalinux/libguestfs-gobject pkg:rpm/almalinux/libguestfs-gobject-devel pkg:rpm/almalinux/libguestfs-inspect-icons pkg:rpm/almalinux/libguestfs-java pkg:rpm/almalinux/libguestfs-java-devel pkg:rpm/almalinux/libguestfs-javadoc pkg:rpm/almalinux/libguestfs-man-pages-ja pkg:rpm/almalinux/libguestfs-man-pages-uk pkg:rpm/almalinux/libguestfs-rescue pkg:rpm/almalinux/libguestfs-rsync pkg:rpm/almalinux/libguestfs-tools pkg:rpm/almalinux/libguestfs-tools-c pkg:rpm/almalinux/libguestfs-winsupport pkg:rpm/almalinux/libguestfs-xfs pkg:rpm/almalinux/libiscsi pkg:rpm/almalinux/libiscsi-devel pkg:rpm/almalinux/libiscsi-utils pkg:rpm/almalinux/libnbd pkg:rpm/almalinux/libnbd-devel pkg:rpm/almalinux/libvirt pkg:rpm/almalinux/libvirt-admin pkg:rpm/almalinux/libvirt-bash-completion pkg:rpm/almalinux/libvirt-client pkg:rpm/almalinux/libvirt-daemon pkg:rpm/almalinux/libvirt-daemon-config-network pkg:rpm/almalinux/libvirt-daemon-config-nwfilter pkg:rpm/almalinux/libvirt-daemon-driver-interface pkg:rpm/almalinux/libvirt-daemon-driver-network pkg:rpm/almalinux/libvirt-daemon-driver-nodedev pkg:rpm/almalinux/libvirt-daemon-driver-nwfilter pkg:rpm/almalinux/libvirt-daemon-driver-qemu pkg:rpm/almalinux/libvirt-daemon-driver-secret pkg:rpm/almalinux/libvirt-daemon-driver-storage pkg:rpm/almalinux/libvirt-daemon-driver-storage-core pkg:rpm/almalinux/libvirt-daemon-driver-storage-disk pkg:rpm/almalinux/libvirt-daemon-driver-storage-gluster pkg:rpm/almalinux/libvirt-daemon-driver-storage-iscsi pkg:rpm/almalinux/libvirt-daemon-driver-storage-iscsi-direct pkg:rpm/almalinux/libvirt-daemon-driver-storage-logical pkg:rpm/almalinux/libvirt-daemon-driver-storage-mpath pkg:rpm/almalinux/libvirt-daemon-driver-storage-rbd pkg:rpm/almalinux/libvirt-daemon-driver-storage-scsi pkg:rpm/almalinux/libvirt-daemon-kvm pkg:rpm/almalinux/libvirt-dbus pkg:rpm/almalinux/libvirt-devel pkg:rpm/almalinux/libvirt-docs pkg:rpm/almalinux/libvirt-libs pkg:rpm/almalinux/libvirt-lock-sanlock pkg:rpm/almalinux/libvirt-nss pkg:rpm/almalinux/lua-guestfs pkg:rpm/almalinux/nbdfuse pkg:rpm/almalinux/nbdkit pkg:rpm/almalinux/nbdkit-bash-completion pkg:rpm/almalinux/nbdkit-basic-filters pkg:rpm/almalinux/nbdkit-basic-plugins pkg:rpm/almalinux/nbdkit-curl-plugin pkg:rpm/almalinux/nbdkit-devel pkg:rpm/almalinux/nbdkit-example-plugins pkg:rpm/almalinux/nbdkit-gzip-plugin pkg:rpm/almalinux/nbdkit-linuxdisk-plugin pkg:rpm/almalinux/nbdkit-python-plugin pkg:rpm/almalinux/nbdkit-server pkg:rpm/almalinux/nbdkit-ssh-plugin pkg:rpm/almalinux/nbdkit-vddk-plugin pkg:rpm/almalinux/nbdkit-xz-filter pkg:rpm/almalinux/netcf pkg:rpm/almalinux/netcf-devel pkg:rpm/almalinux/netcf-libs pkg:rpm/almalinux/perl-hivex pkg:rpm/almalinux/perl-Sys-Guestfs pkg:rpm/almalinux/perl-Sys-Virt pkg:rpm/almalinux/python3-hivex pkg:rpm/almalinux/python3-libguestfs pkg:rpm/almalinux/python3-libnbd pkg:rpm/almalinux/python3-libvirt pkg:rpm/almalinux/ruby-hivex pkg:rpm/almalinux/ruby-libguestfs pkg:rpm/almalinux/seabios pkg:rpm/almalinux/seabios-bin pkg:rpm/almalinux/seavgabios-bin pkg:rpm/almalinux/sgabios pkg:rpm/almalinux/sgabios-bin pkg:rpm/almalinux/supermin pkg:rpm/almalinux/supermin-devel pkg:rpm/almalinux/virt-dib pkg:rpm/almalinux/virt-v2v
< 1.3.18-21.module_el8.5.0+2608+72063365+ 92 more
- (no CPE)range: < 1.3.18-21.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.3.18-21.module_el8.5.0+2608+72063365
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 8.2-1.module_el8.5.0+2608+72063365
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1.18.0-8.module_el8.6.0+2880+7d9e3703
- (no CPE)range: < 1.18.0-8.module_el8.6.0+2880+7d9e3703
- (no CPE)range: < 1.18.0-8.module_el8.6.0+2880+7d9e3703
- (no CPE)range: < 1.2.2-1.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.2.2-1.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.3.0-2.module_el8.6.0+2880+7d9e3703
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-37.module_el8.5.0+2608+72063365
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1.2.2-1.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.16.2-4.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.16.2-4.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.16.2-4.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.16.2-4.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.16.2-4.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.16.2-4.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.16.2-4.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.16.2-4.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.16.2-4.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.16.2-4.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.16.2-4.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.16.2-4.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.16.2-4.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.16.2-4.module_el8.5.0+2608+72063365
- (no CPE)range: < 0.2.8-12.module_el8.5.0+2608+72063365
- (no CPE)range: < 0.2.8-12.module_el8.6.0+2880+7d9e3703
- (no CPE)range: < 0.2.8-12.module_el8.6.0+2880+7d9e3703
- (no CPE)range: < 1.3.18-21.module_el8.5.0+2608+72063365
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 6.0.0-1.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.3.18-21.module_el8.5.0+2608+72063365
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1.2.2-1.module_el8.5.0+2608+72063365
- (no CPE)range: < 6.0.0-1.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.3.18-21.module_el8.5.0+2608+72063365
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1.13.0-2.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.13.0-2.module_el8.5.0+2608+72063365
- (no CPE)range: < 1.13.0-2.module_el8.5.0+2608+72063365
- (no CPE)range: < 1:0.20170427git-3.module_el8.5.0+2608+72063365
- (no CPE)range: < 1:0.20170427git-3.module_el8.5.0+2608+72063365
- (no CPE)range: < 5.1.19-10.module_el8.5.0+2608+72063365
- (no CPE)range: < 5.1.19-10.module_el8.5.0+2608+72063365
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma
- (no CPE)range: < 1:1.40.2-28.module_el8.5.0+2608+72063365.alma

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

security.gentoo.org/glsa/202208-27mitrevendor-advisoryx_refsource_GENTOO
bugs.launchpad.net/qemu/+bug/1886362mitrex_refsource_MISC
lists.debian.org/debian-lts-announce/2021/02/msg00024.htmlmitremailing-listx_refsource_MLIST
lists.debian.org/debian-lts-announce/2022/09/msg00008.htmlmitremailing-listx_refsource_MLIST
lists.gnu.org/archive/html/qemu-devel/2020-07/msg05304.htmlmitrex_refsource_MISC
www.openwall.com/lists/oss-security/2020/07/21/3mitremailing-listx_refsource_MLIST

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000