vulnerability

Huawei EulerOS: CVE-2019-20382: qemu-kvm security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
3	(AV:A/AC:L/Au:S/C:N/I:N/A:P)	Mar 5, 2020	Sep 28, 2020	Nov 27, 2024

Severity

CVSS

(AV:A/AC:L/Au:S/C:N/I:N/A:P)

Published

Mar 5, 2020

Added

Sep 28, 2020

Modified

Nov 27, 2024

Description

QEMU 4.1.0 has a memory leak in zrle_compress_data in ui/vnc-enc-zrle.c during a VNC disconnect operation because libz is misused, resulting in a situation where memory allocated in deflateInit2 is not freed in deflateEnd.

Solution(s)

huawei-euleros-2_0_sp3-upgrade-qemu-imghuawei-euleros-2_0_sp3-upgrade-qemu-kvmhuawei-euleros-2_0_sp3-upgrade-qemu-kvm-common

References

CVE-2019-20382
https://attackerkb.com/topics/CVE-2019-20382
EULEROS-EulerOS-SA-2020-2097

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today