CVE 2020-35504
A NULL pointer dereference flaw was found in the SCSI emulation support of QEMU in versions before 6.0.0. This flaw allows a privileged guest user to crash the QEMU process on the host, resulting in a denial of service. The highest threat from this vulnerability is to system availability.
Related bugs and status
CVE-2020-35504 (Candidate) is related to these bugs:
Bug #1910723: NULL pointer dereference issues in am53c974 SCSI host bus adapter
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1910723 | NULL pointer dereference issues in am53c974 SCSI host bus adapter | QEMU | Undecided | Fix Released | ||
Bug #1932175: [21.10 FEAT] CPU Model for new IBM Z Hardware - qemu part
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1932175 | [21.10 FEAT] CPU Model for new IBM Z Hardware - qemu part | qemu (Ubuntu) | Undecided | Fix Released | ||
| 1932175 | [21.10 FEAT] CPU Model for new IBM Z Hardware - qemu part | Ubuntu on IBM z Systems | High | Fix Released | ||
Bug #1936894: microvm is not the default type for qemu-system-x86_64-microvm >=qemu5.2
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1936894 | microvm is not the default type for qemu-system-x86_64-microvm >=qemu5.2 | qemu (Ubuntu) | Undecided | Fix Released | ||
| 1936894 | microvm is not the default type for qemu-system-x86_64-microvm >=qemu5.2 | qemu (Ubuntu Hirsute) | Undecided | Fix Released | ||
Bug #1940029: Default of fcf-protection should only be enabled where it can work
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1940029 | Default of fcf-protection should only be enabled where it can work | gcc-11 (Ubuntu) | Undecided | Fix Released | ||
| 1940029 | Default of fcf-protection should only be enabled where it can work | qemu (Ubuntu) | High | Fix Released | ||
| 1940029 | Default of fcf-protection should only be enabled where it can work | gcc-12 (Ubuntu) | Undecided | Fix Released | ||
| 1940029 | Default of fcf-protection should only be enabled where it can work | gcc-10 (Ubuntu) | Undecided | Fix Released | ||
| 1940029 | Default of fcf-protection should only be enabled where it can work | gcc-12 (Ubuntu Jammy) | Undecided | Fix Released | ||
| 1940029 | Default of fcf-protection should only be enabled where it can work | gcc-10 (Ubuntu Focal) | Undecided | Fix Released | ||
Bug #1940288: migration broken by audio dev
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1940288 | migration broken by audio dev | qemu (Ubuntu) | Low | Fix Released | ||
| 1940288 | migration broken by audio dev | qemu (Ubuntu Focal) | Wishlist | Won't Fix | ||
| 1940288 | migration broken by audio dev | qemu (Ubuntu Hirsute) | Wishlist | Won't Fix | ||
| 1940288 | migration broken by audio dev | qemu (Ubuntu Impish) | Low | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
