Alerts This Week
Warning Icon 1 923
Alerts This Week
Warning Icon 1 923

Debian: DSA-4616-1 Critical: QEMU Denial Of Service And Code Exec

debian
Calendar Grey February 2, 2020
Debian Logo
Recent vulnerabilities discovered in QEMU may lead to potential unauthorized code execution or disruption of service. It's crucial to update QEMU promptly to address these security issues.
Two security issues have been found in the SLiRP networking implementation of QEMU, a fast processor emulator, which could result in the execution of arbitrary code or denial of se...
Topics%20covered

Topics Covered

security advisory denial of service critical code execution debian networking issue qemu

Summary

Two security issues have been found in the SLiRP networking
implementation of QEMU, a fast processor emulator, which could result
in the execution of arbitrary code or denial of service.

For the oldstable distribution (stretch), these problems have been fixed
in version 1:2.8+dfsg-6+deb9u9.

For the stable distribution (buster), these problems have been fixed in
version 1:3.1+dfsg-8+deb10u4.

We recommend that you upgrade your qemu packages.

For the detailed security status of qemu please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/qemu

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/



Severity
critical
Lowest
Low
Medium
High
Critical

Package: qemu
CVE ID: CVE-2019-15890 CVE-2020-7039 CVE-2020-1711

Topics%20covered

Topics Covered

security advisory denial of service critical code execution debian networking issue qemu

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here