Launchpad CVE tracker

CVE 2020-10756

An out-of-bounds read vulnerability was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the icmp6_send_echoreply() routine while replying to an ICMP echo request, also known as ping. This flaw allows a malicious guest to leak the contents of the host memory, resulting in possible information disclosure. This flaw affects versions of libslirp before 4.3.1.

Related bugs and status

CVE-2020-10756 (Candidate) is related to these bugs:

Bug #1805256: qemu-img hangs on rcu_call_ready_event logic in Aarch64 when converting images

		In	Importance	Status
1805256	qemu-img hangs on rcu_call_ready_event logic in Aarch64 when converting images	QEMU	Undecided	Fix Released
1805256	qemu-img hangs on rcu_call_ready_event logic in Aarch64 when converting images	qemu (Ubuntu)	Medium	Fix Released
1805256	qemu-img hangs on rcu_call_ready_event logic in Aarch64 when converting images	qemu (Ubuntu Focal)	Medium	Fix Released
1805256	qemu-img hangs on rcu_call_ready_event logic in Aarch64 when converting images	qemu (Ubuntu Bionic)	Medium	Fix Released
1805256	qemu-img hangs on rcu_call_ready_event logic in Aarch64 when converting images	qemu (Ubuntu Eoan)	Medium	Fix Released
1805256	qemu-img hangs on rcu_call_ready_event logic in Aarch64 when converting images	kunpeng920	Undecided	Fix Released
1805256	qemu-img hangs on rcu_call_ready_event logic in Aarch64 when converting images	kunpeng920 upstream-kernel	Undecided	Invalid
1805256	qemu-img hangs on rcu_call_ready_event logic in Aarch64 when converting images	kunpeng920 ubuntu-20.04	Undecided	Fix Released
1805256	qemu-img hangs on rcu_call_ready_event logic in Aarch64 when converting images	kunpeng920 ubuntu-19.10	Undecided	Fix Released
1805256	qemu-img hangs on rcu_call_ready_event logic in Aarch64 when converting images	kunpeng920 ubuntu-18.04	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2020-10756

References