Vulnerability Details CVE-2020-11102
hw/net/tulip.c in QEMU 4.2.0 has a buffer overflow during the copying of tx/rx buffers because the frame size is not validated against the r/w data length.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.0%
CVSS Severity
CVSS v3 Score 5.6
CVSS v2 Score 6.8
References
- http://www.openwall.com/lists/oss-security/2020/04/06/1
- http://www.openwall.com/lists/oss-security/2020/04/06/1
- https://lists.gnu.org/archive/html/qemu-devel/2020-03/msg08322.html
- https://security.gentoo.org/glsa/202005-02
- http://www.openwall.com/lists/oss-security/2020/04/06/1
- http://www.openwall.com/lists/oss-security/2020/04/06/1
- https://lists.gnu.org/archive/html/qemu-devel/2020-03/msg08322.html
- https://security.gentoo.org/glsa/202005-02