CVE-2019-9824
Published: 19 March 2019
tcp_emu in slirp/tcp_subr.c (aka slirp/src/tcp_subr.c) in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to Information disclosure.
From the Ubuntu Security Team
William Bowling discovered that an information leak existed in the SLiRP networking implementation of QEMU. An attacker could use this to expose sensitive information.
Priority
Status
| Package | Release | Status |
|---|---|---|
|
qemu Launchpad, Ubuntu, Debian |
hirsute |
Released
(1:3.1+dfsg-2ubuntu4)
|
| bionic |
Released
(1:2.11+dfsg-1ubuntu7.13)
|
|
| cosmic |
Released
(1:2.12+dfsg-3ubuntu8.7)
|
|
| disco |
Released
(1:3.1+dfsg-2ubuntu3.1)
|
|
| eoan |
Released
(1:3.1+dfsg-2ubuntu4)
|
|
| focal |
Released
(1:3.1+dfsg-2ubuntu4)
|
|
| groovy |
Released
(1:3.1+dfsg-2ubuntu4)
|
|
| trusty |
Released
(2.0.0+dfsg-2ubuntu1.46)
|
|
| upstream |
Needs triage
|
|
| xenial |
Released
(1:2.5+dfsg-5ubuntu10.38)
|
|
|
Patches: upstream: https://git.qemu.org/?p=qemu.git;a=commit;h=d3222975c7d6cda9e25809dea05241188457b113 |
||
|
qemu-kvm Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
| bionic |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| groovy |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| xenial |
Does not exist
|
|
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 5.5 |
| Attack vector | Local |
| Attack complexity | Low |
| Privileges required | Low |
| User interaction | None |
| Scope | Unchanged |
| Confidentiality | High |
| Integrity impact | None |
| Availability impact | None |
| Vector | CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |