CVE-2020-1711 (https://nvd.nist.gov/vuln/detail/CVE-2020-1711): An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU versions 2.12.0 before 4.2.1 handled a response coming from an iSCSI server while checking the status of a Logical Address Block (LBA) in an iscsi_co_block_status() routine. A remote user could use this flaw to crash the QEMU process, resulting in a denial of service or potential execution of arbitrary code with privileges of the QEMU process on the host.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=3d64329bfa3c175fc678d0dba06d2618cdb2ee89 commit 3d64329bfa3c175fc678d0dba06d2618cdb2ee89 Author: Matthias Maier <tamiko@gentoo.org> AuthorDate: 2020-04-18 21:49:15 +0000 Commit: Matthias Maier <tamiko@gentoo.org> CommitDate: 2020-04-18 22:05:37 +0000 app-emulation/qemu: add security patch Bug: https://bugs.gentoo.org/717770 Package-Manager: Portage-2.3.99, Repoman-2.3.22 Signed-off-by: Matthias Maier <tamiko@gentoo.org> app-emulation/qemu/Manifest | 1 + app-emulation/qemu/qemu-4.2.0-r5.ebuild | 833 ++++++++++++++++++++++++++++++++ 2 files changed, 834 insertions(+)
This issue was resolved and addressed in GLSA 202005-02 at https://security.gentoo.org/glsa/202005-02 by GLSA coordinator Thomas Deutschmann (whissi).
