Infinite loop in QEMU - CVE-2019-12068
Published: November 14, 2019 / Updated: April 28, 2020
Vulnerability identifier: #VU22783
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2019-12068
CWE-ID: CWE-835
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: QEMU
Affected software:
QEMU
QEMU
Detailed vulnerability description
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to infinite loop in lsi_execute_script() when reading empty opcode. A local user can consume all available system resources and cause denial of service conditions.
How to mitigate CVE-2019-12068
Install update from vendor's website.
Sources
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00038.html
- https://git.qemu.org/?p=qemu.git;a=commit;h=de594e47659029316bbf9391efb79da0a1a08e08
- https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html
- https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01518.html
- https://security-tracker.debian.org/tracker/CVE-2019-12068
- https://usn.ubuntu.com/4191-2/