OSV-2020-2223

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/qemu/OSV-2020-2223.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2020-2223
Published
2020-12-04T00:00:19.497055Z
Modified
2022-04-13T03:04:33.332274Z
Summary
Heap-use-after-free in e1000e_write_packet_to_guest
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28194

Crash type: Heap-use-after-free READ 8
Crash state:
e1000e_write_packet_to_guest
e1000e_receive_iov
e1000e_nc_receive_iov
References

Affected packages

OSS-Fuzz / qemu

Package

Name
qemu
Purl
pkg:generic/qemu

Affected ranges

Type
GIT
Repo
https://git.qemu.org/git/qemu.git
Events
Introduced
7564bf7701f00214cdc8a678a9f7df765244def1
Fixed
b98b9fdef00e2383f63f939e079fe2c9eba87ca1

Affected versions

v5.*

v5.2.0
v5.2.0-rc2
v5.2.0-rc3
v5.2.0-rc4

Ecosystem specific 

{
    "severity": "HIGH"
}