Description
hw/display/bochs-display.c in QEMU 4.0.0 does not ensure a sufficient PCI config space allocation, leading to a buffer overflow involving the PCIe extended config space.
References (4)
Core 4
Core References
Mailing List, Patch, Third Party Advisory x_refsource_misc
https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01959.html
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00007.html
Third Party Advisory vendor-advisory
x_refsource_debian
https://www.debian.org/security/2020/dsa-4665
Vendor Advisory vendor-advisory
x_refsource_ubuntu
https://usn.ubuntu.com/4372-1/
Scores
CVSS v3
5.8
EPSS
0.0019
EPSS Percentile
40.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H
Details
CWE
CWE-120
Status
published
Products (1)
qemu/qemu
4.0.0
Published
Mar 10, 2020
Tracked Since
Feb 18, 2026