RHBA-2020:3172MediumCVSS 7.5
Red Hat Bug Fix Advisory: Advanced Virtualization bug fix and enhancement update
🔗 CVE IDs covered (7)
📋 Description
CVE-2019-15890 — QEMU: Slirp: use-after-free during packet reassembly CVE-2020-1983 — QEMU: slirp: use-after-free in ip_reass() function in ip_input.c CVE-2020-10702 — qemu: weak signature generation in Pointer Authentication support for ARM CVE-2020-10717 — QEMU: virtiofsd: guest may open maximum file descriptor to cause DoS CVE-2020-10761 — QEMU: nbd: reachable assertion failure in nbd_negotiate_send_rep_verr via remote client CVE-2020-14301 — libvirt: leak of sensitive cookie information via dumpxml CVE-2020-15890 — luajit: out-of-bounds read because __gc handler frame traversal is mishandled
🔗 References (39)
- selfhttps://access.redhat.com/errata/RHBA-2020:3172
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1685775
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1706759
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1775462
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1778593
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1779893
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1779904
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1780574
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1790899
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1802592
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1804593
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1812765
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1813395
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1816793
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1819250
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1820120
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1820531
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1822523
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1829729
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1831969
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1832204
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1834353
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1836351
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1837328
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1837337
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1839030
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1839999
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1840008
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1840010
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1840119
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1841038
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1841068
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1845779
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1846237
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1847959
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1849095
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1849999
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1850351
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2020/rhba-2020_3172.json