vulnerability

CentOS Linux: CVE-2020-7039: Important: container-tools:rhel8 security, bug fix, and enhancement update (Multiple Advisories)

Try Surface Command
Back to search
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
01/16/2020
Added
02/05/2020
Modified
05/25/2023

Description

tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanages memory, as demonstrated by IRC DCC commands in EMU_IRC. This can cause a heap-based buffer overflow or other out-of-bounds access which can lead to a DoS or potential execute arbitrary code.

Solution(s)

centos-upgrade-buildahcentos-upgrade-buildah-debuginfocentos-upgrade-buildah-debugsourcecentos-upgrade-buildah-testscentos-upgrade-buildah-tests-debuginfocentos-upgrade-cockpit-podmancentos-upgrade-conmoncentos-upgrade-container-selinuxcentos-upgrade-containernetworking-pluginscentos-upgrade-containernetworking-plugins-debuginfocentos-upgrade-containernetworking-plugins-debugsourcecentos-upgrade-containers-commoncentos-upgrade-fuse-overlayfscentos-upgrade-fuse-overlayfs-debuginfocentos-upgrade-fuse-overlayfs-debugsourcecentos-upgrade-hivexcentos-upgrade-hivex-debuginfocentos-upgrade-hivex-debugsourcecentos-upgrade-hivex-develcentos-upgrade-libguestfscentos-upgrade-libguestfs-bash-completioncentos-upgrade-libguestfs-benchmarkingcentos-upgrade-libguestfs-benchmarking-debuginfocentos-upgrade-libguestfs-debuginfocentos-upgrade-libguestfs-debugsourcecentos-upgrade-libguestfs-develcentos-upgrade-libguestfs-gfs2centos-upgrade-libguestfs-gobjectcentos-upgrade-libguestfs-gobject-debuginfocentos-upgrade-libguestfs-gobject-develcentos-upgrade-libguestfs-inspect-iconscentos-upgrade-libguestfs-javacentos-upgrade-libguestfs-java-debuginfocentos-upgrade-libguestfs-java-develcentos-upgrade-libguestfs-javadoccentos-upgrade-libguestfs-man-pages-jacentos-upgrade-libguestfs-man-pages-ukcentos-upgrade-libguestfs-rescuecentos-upgrade-libguestfs-rsynccentos-upgrade-libguestfs-toolscentos-upgrade-libguestfs-tools-ccentos-upgrade-libguestfs-tools-c-debuginfocentos-upgrade-libguestfs-winsupportcentos-upgrade-libguestfs-xfscentos-upgrade-libiscsicentos-upgrade-libiscsi-debuginfocentos-upgrade-libiscsi-debugsourcecentos-upgrade-libiscsi-develcentos-upgrade-libiscsi-utilscentos-upgrade-libiscsi-utils-debuginfocentos-upgrade-libvirtcentos-upgrade-libvirt-admincentos-upgrade-libvirt-admin-debuginfocentos-upgrade-libvirt-bash-completioncentos-upgrade-libvirt-clientcentos-upgrade-libvirt-client-debuginfocentos-upgrade-libvirt-daemoncentos-upgrade-libvirt-daemon-config-networkcentos-upgrade-libvirt-daemon-config-nwfiltercentos-upgrade-libvirt-daemon-debuginfocentos-upgrade-libvirt-daemon-driver-interfacecentos-upgrade-libvirt-daemon-driver-interface-debuginfocentos-upgrade-libvirt-daemon-driver-networkcentos-upgrade-libvirt-daemon-driver-network-debuginfocentos-upgrade-libvirt-daemon-driver-nodedevcentos-upgrade-libvirt-daemon-driver-nodedev-debuginfocentos-upgrade-libvirt-daemon-driver-nwfiltercentos-upgrade-libvirt-daemon-driver-nwfilter-debuginfocentos-upgrade-libvirt-daemon-driver-qemucentos-upgrade-libvirt-daemon-driver-qemu-debuginfocentos-upgrade-libvirt-daemon-driver-secretcentos-upgrade-libvirt-daemon-driver-secret-debuginfocentos-upgrade-libvirt-daemon-driver-storagecentos-upgrade-libvirt-daemon-driver-storage-corecentos-upgrade-libvirt-daemon-driver-storage-core-debuginfocentos-upgrade-libvirt-daemon-driver-storage-diskcentos-upgrade-libvirt-daemon-driver-storage-disk-debuginfocentos-upgrade-libvirt-daemon-driver-storage-glustercentos-upgrade-libvirt-daemon-driver-storage-gluster-debuginfocentos-upgrade-libvirt-daemon-driver-storage-iscsicentos-upgrade-libvirt-daemon-driver-storage-iscsi-debuginfocentos-upgrade-libvirt-daemon-driver-storage-logicalcentos-upgrade-libvirt-daemon-driver-storage-logical-debuginfocentos-upgrade-libvirt-daemon-driver-storage-mpathcentos-upgrade-libvirt-daemon-driver-storage-mpath-debuginfocentos-upgrade-libvirt-daemon-driver-storage-rbdcentos-upgrade-libvirt-daemon-driver-storage-rbd-debuginfocentos-upgrade-libvirt-daemon-driver-storage-scsicentos-upgrade-libvirt-daemon-driver-storage-scsi-debuginfocentos-upgrade-libvirt-daemon-kvmcentos-upgrade-libvirt-dbuscentos-upgrade-libvirt-dbus-debuginfocentos-upgrade-libvirt-dbus-debugsourcecentos-upgrade-libvirt-debuginfocentos-upgrade-libvirt-debugsourcecentos-upgrade-libvirt-develcentos-upgrade-libvirt-docscentos-upgrade-libvirt-libscentos-upgrade-libvirt-libs-debuginfocentos-upgrade-libvirt-lock-sanlockcentos-upgrade-libvirt-lock-sanlock-debuginfocentos-upgrade-libvirt-nsscentos-upgrade-libvirt-nss-debuginfocentos-upgrade-libvirt-python-debugsourcecentos-upgrade-lua-guestfscentos-upgrade-lua-guestfs-debuginfocentos-upgrade-nbdkitcentos-upgrade-nbdkit-bash-completioncentos-upgrade-nbdkit-basic-pluginscentos-upgrade-nbdkit-basic-plugins-debuginfocentos-upgrade-nbdkit-debuginfocentos-upgrade-nbdkit-debugsourcecentos-upgrade-nbdkit-develcentos-upgrade-nbdkit-example-pluginscentos-upgrade-nbdkit-example-plugins-debuginfocentos-upgrade-nbdkit-plugin-gzipcentos-upgrade-nbdkit-plugin-gzip-debuginfocentos-upgrade-nbdkit-plugin-python-commoncentos-upgrade-nbdkit-plugin-python3centos-upgrade-nbdkit-plugin-python3-debuginfocentos-upgrade-nbdkit-plugin-vddkcentos-upgrade-nbdkit-plugin-vddk-debuginfocentos-upgrade-nbdkit-plugin-xzcentos-upgrade-nbdkit-plugin-xz-debuginfocentos-upgrade-netcfcentos-upgrade-netcf-debuginfocentos-upgrade-netcf-debugsourcecentos-upgrade-netcf-develcentos-upgrade-netcf-libscentos-upgrade-netcf-libs-debuginfocentos-upgrade-oci-systemd-hookcentos-upgrade-oci-systemd-hook-debuginfocentos-upgrade-oci-systemd-hook-debugsourcecentos-upgrade-oci-umountcentos-upgrade-oci-umount-debuginfocentos-upgrade-oci-umount-debugsourcecentos-upgrade-perl-hivexcentos-upgrade-perl-hivex-debuginfocentos-upgrade-perl-sys-guestfscentos-upgrade-perl-sys-guestfs-debuginfocentos-upgrade-perl-sys-virtcentos-upgrade-perl-sys-virt-debuginfocentos-upgrade-perl-sys-virt-debugsourcecentos-upgrade-podmancentos-upgrade-podman-debuginfocentos-upgrade-podman-debugsourcecentos-upgrade-podman-dockercentos-upgrade-podman-manpagescentos-upgrade-podman-remotecentos-upgrade-podman-remote-debuginfocentos-upgrade-podman-testscentos-upgrade-python-podman-apicentos-upgrade-python3-hivexcentos-upgrade-python3-hivex-debuginfocentos-upgrade-python3-libguestfscentos-upgrade-python3-libguestfs-debuginfocentos-upgrade-python3-libvirtcentos-upgrade-python3-libvirt-debuginfocentos-upgrade-qemu-guest-agentcentos-upgrade-qemu-guest-agent-debuginfocentos-upgrade-qemu-imgcentos-upgrade-qemu-img-debuginfocentos-upgrade-qemu-img-macentos-upgrade-qemu-kvmcentos-upgrade-qemu-kvm-block-curlcentos-upgrade-qemu-kvm-block-curl-debuginfocentos-upgrade-qemu-kvm-block-glustercentos-upgrade-qemu-kvm-block-gluster-debuginfocentos-upgrade-qemu-kvm-block-iscsicentos-upgrade-qemu-kvm-block-iscsi-debuginfocentos-upgrade-qemu-kvm-block-rbdcentos-upgrade-qemu-kvm-block-rbd-debuginfocentos-upgrade-qemu-kvm-block-sshcentos-upgrade-qemu-kvm-block-ssh-debuginfocentos-upgrade-qemu-kvm-commoncentos-upgrade-qemu-kvm-common-debuginfocentos-upgrade-qemu-kvm-common-macentos-upgrade-qemu-kvm-corecentos-upgrade-qemu-kvm-core-debuginfocentos-upgrade-qemu-kvm-debuginfocentos-upgrade-qemu-kvm-debugsourcecentos-upgrade-qemu-kvm-macentos-upgrade-qemu-kvm-ma-debuginfocentos-upgrade-qemu-kvm-toolscentos-upgrade-qemu-kvm-tools-macentos-upgrade-ruby-hivexcentos-upgrade-ruby-hivex-debuginfocentos-upgrade-ruby-libguestfscentos-upgrade-ruby-libguestfs-debuginfocentos-upgrade-runccentos-upgrade-runc-debuginfocentos-upgrade-runc-debugsourcecentos-upgrade-seabioscentos-upgrade-seabios-bincentos-upgrade-seavgabios-bincentos-upgrade-sgabioscentos-upgrade-sgabios-bincentos-upgrade-skopeocentos-upgrade-skopeo-debuginfocentos-upgrade-skopeo-debugsourcecentos-upgrade-skopeo-testscentos-upgrade-slirp4netnscentos-upgrade-slirp4netns-debuginfocentos-upgrade-slirp4netns-debugsourcecentos-upgrade-supermincentos-upgrade-supermin-debuginfocentos-upgrade-supermin-debugsourcecentos-upgrade-supermin-develcentos-upgrade-toolboxcentos-upgrade-udicacentos-upgrade-virt-dibcentos-upgrade-virt-dib-debuginfocentos-upgrade-virt-p2v-makercentos-upgrade-virt-v2vcentos-upgrade-virt-v2v-debuginfo

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today