usn-4372-1
Vulnerability from osv_ubuntu
It was discovered that QEMU incorrectly handled bochs-display devices. A local attacker in a guest could use this to cause a denial of service or possibly execute arbitrary code in the host. This issue only affected Ubuntu 19.10. (CVE-2019-15034)
It was discovered that QEMU incorrectly handled memory during certain VNC operations. A remote attacker could possibly use this issue to cause QEMU to consume resources, resulting in a denial of service. This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 19.10. (CVE-2019-20382)
It was discovered that QEMU incorrectly generated QEMU Pointer Authentication signatures on ARM. A local attacker could possibly use this issue to bypass PAuth. This issue only affected Ubuntu 19.10. (CVE-2020-10702)
Ziming Zhang discovered that QEMU incorrectly handled ATI VGA emulation. A local attacker in a guest could use this issue to cause QEMU to crash, resulting in a denial of service. This issue only affected Ubuntu 20.04 LTS. (CVE-2020-11869)
Aviv Sasson discovered that QEMU incorrectly handled Slirp networking. A remote attacker could use this issue to cause QEMU to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 19.10. (CVE-2020-1983)
{
"affected": [
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2019-20382",
"severity": [
{
"score": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2020-1983",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:16.04:LTS"
}
},
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "qemu",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
},
{
"binary_name": "qemu-block-extra",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
},
{
"binary_name": "qemu-guest-agent",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
},
{
"binary_name": "qemu-kvm",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
},
{
"binary_name": "qemu-system",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
},
{
"binary_name": "qemu-system-aarch64",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
},
{
"binary_name": "qemu-system-arm",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
},
{
"binary_name": "qemu-system-common",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
},
{
"binary_name": "qemu-system-mips",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
},
{
"binary_name": "qemu-system-misc",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
},
{
"binary_name": "qemu-system-ppc",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
},
{
"binary_name": "qemu-system-s390x",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
},
{
"binary_name": "qemu-system-sparc",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
},
{
"binary_name": "qemu-system-x86",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
},
{
"binary_name": "qemu-user",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
},
{
"binary_name": "qemu-user-binfmt",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
},
{
"binary_name": "qemu-user-static",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
},
{
"binary_name": "qemu-utils",
"binary_version": "1:2.5+dfsg-5ubuntu10.44"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "qemu",
"purl": "pkg:deb/ubuntu/qemu@1:2.5+dfsg-5ubuntu10.44?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1:2.5+dfsg-5ubuntu10.44"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:2.3+dfsg-5ubuntu9",
"1:2.3+dfsg-5ubuntu10",
"1:2.4+dfsg-4ubuntu1",
"1:2.4+dfsg-4ubuntu2",
"1:2.4+dfsg-4ubuntu3",
"1:2.4+dfsg-5ubuntu3",
"1:2.5+dfsg-1ubuntu2",
"1:2.5+dfsg-1ubuntu3",
"1:2.5+dfsg-1ubuntu4",
"1:2.5+dfsg-1ubuntu5",
"1:2.5+dfsg-5ubuntu1",
"1:2.5+dfsg-5ubuntu2",
"1:2.5+dfsg-5ubuntu4",
"1:2.5+dfsg-5ubuntu6",
"1:2.5+dfsg-5ubuntu7",
"1:2.5+dfsg-5ubuntu10",
"1:2.5+dfsg-5ubuntu10.1",
"1:2.5+dfsg-5ubuntu10.2",
"1:2.5+dfsg-5ubuntu10.3",
"1:2.5+dfsg-5ubuntu10.4",
"1:2.5+dfsg-5ubuntu10.5",
"1:2.5+dfsg-5ubuntu10.6",
"1:2.5+dfsg-5ubuntu10.7",
"1:2.5+dfsg-5ubuntu10.8",
"1:2.5+dfsg-5ubuntu10.9",
"1:2.5+dfsg-5ubuntu10.10",
"1:2.5+dfsg-5ubuntu10.11",
"1:2.5+dfsg-5ubuntu10.13",
"1:2.5+dfsg-5ubuntu10.14",
"1:2.5+dfsg-5ubuntu10.15",
"1:2.5+dfsg-5ubuntu10.16",
"1:2.5+dfsg-5ubuntu10.20",
"1:2.5+dfsg-5ubuntu10.21",
"1:2.5+dfsg-5ubuntu10.22",
"1:2.5+dfsg-5ubuntu10.24",
"1:2.5+dfsg-5ubuntu10.25",
"1:2.5+dfsg-5ubuntu10.26",
"1:2.5+dfsg-5ubuntu10.28",
"1:2.5+dfsg-5ubuntu10.29",
"1:2.5+dfsg-5ubuntu10.30",
"1:2.5+dfsg-5ubuntu10.31",
"1:2.5+dfsg-5ubuntu10.32",
"1:2.5+dfsg-5ubuntu10.33",
"1:2.5+dfsg-5ubuntu10.34",
"1:2.5+dfsg-5ubuntu10.35",
"1:2.5+dfsg-5ubuntu10.36",
"1:2.5+dfsg-5ubuntu10.37",
"1:2.5+dfsg-5ubuntu10.38",
"1:2.5+dfsg-5ubuntu10.39",
"1:2.5+dfsg-5ubuntu10.40",
"1:2.5+dfsg-5ubuntu10.41",
"1:2.5+dfsg-5ubuntu10.42",
"1:2.5+dfsg-5ubuntu10.43"
]
},
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2019-20382",
"severity": [
{
"score": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2020-1983",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:18.04:LTS"
}
},
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "qemu",
"binary_version": "1:2.11+dfsg-1ubuntu7.26"
},
{
"binary_name": "qemu-block-extra",
"binary_version": "1:2.11+dfsg-1ubuntu7.26"
},
{
"binary_name": "qemu-guest-agent",
"binary_version": "1:2.11+dfsg-1ubuntu7.26"
},
{
"binary_name": "qemu-kvm",
"binary_version": "1:2.11+dfsg-1ubuntu7.26"
},
{
"binary_name": "qemu-system",
"binary_version": "1:2.11+dfsg-1ubuntu7.26"
},
{
"binary_name": "qemu-system-arm",
"binary_version": "1:2.11+dfsg-1ubuntu7.26"
},
{
"binary_name": "qemu-system-common",
"binary_version": "1:2.11+dfsg-1ubuntu7.26"
},
{
"binary_name": "qemu-system-mips",
"binary_version": "1:2.11+dfsg-1ubuntu7.26"
},
{
"binary_name": "qemu-system-misc",
"binary_version": "1:2.11+dfsg-1ubuntu7.26"
},
{
"binary_name": "qemu-system-ppc",
"binary_version": "1:2.11+dfsg-1ubuntu7.26"
},
{
"binary_name": "qemu-system-s390x",
"binary_version": "1:2.11+dfsg-1ubuntu7.26"
},
{
"binary_name": "qemu-system-sparc",
"binary_version": "1:2.11+dfsg-1ubuntu7.26"
},
{
"binary_name": "qemu-system-x86",
"binary_version": "1:2.11+dfsg-1ubuntu7.26"
},
{
"binary_name": "qemu-user",
"binary_version": "1:2.11+dfsg-1ubuntu7.26"
},
{
"binary_name": "qemu-user-binfmt",
"binary_version": "1:2.11+dfsg-1ubuntu7.26"
},
{
"binary_name": "qemu-user-static",
"binary_version": "1:2.11+dfsg-1ubuntu7.26"
},
{
"binary_name": "qemu-utils",
"binary_version": "1:2.11+dfsg-1ubuntu7.26"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "qemu",
"purl": "pkg:deb/ubuntu/qemu@1:2.11+dfsg-1ubuntu7.26?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1:2.11+dfsg-1ubuntu7.26"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:2.10+dfsg-0ubuntu3",
"1:2.10+dfsg-0ubuntu4",
"1:2.10+dfsg-0ubuntu5",
"1:2.11+dfsg-1ubuntu1",
"1:2.11+dfsg-1ubuntu2",
"1:2.11+dfsg-1ubuntu4",
"1:2.11+dfsg-1ubuntu5",
"1:2.11+dfsg-1ubuntu6",
"1:2.11+dfsg-1ubuntu7",
"1:2.11+dfsg-1ubuntu7.1",
"1:2.11+dfsg-1ubuntu7.2",
"1:2.11+dfsg-1ubuntu7.3",
"1:2.11+dfsg-1ubuntu7.4",
"1:2.11+dfsg-1ubuntu7.5",
"1:2.11+dfsg-1ubuntu7.6",
"1:2.11+dfsg-1ubuntu7.7",
"1:2.11+dfsg-1ubuntu7.8",
"1:2.11+dfsg-1ubuntu7.9",
"1:2.11+dfsg-1ubuntu7.10",
"1:2.11+dfsg-1ubuntu7.12",
"1:2.11+dfsg-1ubuntu7.13",
"1:2.11+dfsg-1ubuntu7.14",
"1:2.11+dfsg-1ubuntu7.15",
"1:2.11+dfsg-1ubuntu7.17",
"1:2.11+dfsg-1ubuntu7.18",
"1:2.11+dfsg-1ubuntu7.19",
"1:2.11+dfsg-1ubuntu7.20",
"1:2.11+dfsg-1ubuntu7.21",
"1:2.11+dfsg-1ubuntu7.22",
"1:2.11+dfsg-1ubuntu7.23",
"1:2.11+dfsg-1ubuntu7.25"
]
},
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2020-11869",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:20.04:LTS"
}
},
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "qemu",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-block-extra",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-guest-agent",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-kvm",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-system",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-system-arm",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-system-common",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-system-data",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-system-gui",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-system-mips",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-system-misc",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-system-ppc",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-system-s390x",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-system-sparc",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-system-x86",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-system-x86-microvm",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-system-x86-xen",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-user",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-user-binfmt",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-user-static",
"binary_version": "1:4.2-3ubuntu6.1"
},
{
"binary_name": "qemu-utils",
"binary_version": "1:4.2-3ubuntu6.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "qemu",
"purl": "pkg:deb/ubuntu/qemu@1:4.2-3ubuntu6.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1:4.2-3ubuntu6.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:4.0+dfsg-0ubuntu9",
"1:4.0+dfsg-0ubuntu10",
"1:4.2-1ubuntu1",
"1:4.2-1ubuntu2",
"1:4.2-3ubuntu1",
"1:4.2-3ubuntu2",
"1:4.2-3ubuntu3",
"1:4.2-3ubuntu4",
"1:4.2-3ubuntu5",
"1:4.2-3ubuntu6"
]
}
],
"aliases": [],
"details": "It was discovered that QEMU incorrectly handled bochs-display devices. A\nlocal attacker in a guest could use this to cause a denial of service or\npossibly execute arbitrary code in the host. This issue only affected\nUbuntu 19.10. (CVE-2019-15034)\n\nIt was discovered that QEMU incorrectly handled memory during certain VNC\noperations. A remote attacker could possibly use this issue to cause QEMU\nto consume resources, resulting in a denial of service. This issue only\naffected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 19.10.\n(CVE-2019-20382)\n\nIt was discovered that QEMU incorrectly generated QEMU Pointer\nAuthentication signatures on ARM. A local attacker could possibly use this\nissue to bypass PAuth. This issue only affected Ubuntu 19.10.\n(CVE-2020-10702)\n\nZiming Zhang discovered that QEMU incorrectly handled ATI VGA emulation. A\nlocal attacker in a guest could use this issue to cause QEMU to crash,\nresulting in a denial of service. This issue only affected Ubuntu 20.04\nLTS. (CVE-2020-11869)\n\nAviv Sasson discovered that QEMU incorrectly handled Slirp networking. A\nremote attacker could use this issue to cause QEMU to crash, resulting in a\ndenial of service, or possibly execute arbitrary code. This issue only\naffected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 19.10.\n(CVE-2020-1983)\n",
"id": "USN-4372-1",
"modified": "2026-04-27T14:11:25Z",
"published": "2020-05-21T17:08:15Z",
"references": [
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-4372-1"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2019-15034"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2019-20382"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2020-1983"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2020-10702"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2020-11869"
}
],
"related": [],
"schema_version": "1.7.0",
"summary": "qemu vulnerabilities",
"upstream": [
"UBUNTU-CVE-2019-15034",
"UBUNTU-CVE-2019-20382",
"UBUNTU-CVE-2020-1983",
"UBUNTU-CVE-2020-10702",
"UBUNTU-CVE-2020-11869"
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.