SecuritySpace - CVE-2020-24352

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2020-24352

Description: An issue was discovered in QEMU through 5.1.0. An out-of-bounds memory access was found in the ATI VGA device implementation. This flaw occurs in the ati_2d_blt() routine in hw/display/ati_2d.c while handling MMIO write operations through the ati_mm_write() callback. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service.

Test IDs: 1.3.6.1.4.1.25623.1.0.113768

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2020-24352
https://bugzilla.redhat.com/show_bug.cgi?id=1847584
https://git.qemu.org/?p=qemu.git

CVE ID:	CVE-2020-24352
Description:	An issue was discovered in QEMU through 5.1.0. An out-of-bounds memory access was found in the ATI VGA device implementation. This flaw occurs in the ati_2d_blt() routine in hw/display/ati_2d.c while handling MMIO write operations through the ati_mm_write() callback. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service.
Test IDs:	1.3.6.1.4.1.25623.1.0.113768
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2020-24352 https://bugzilla.redhat.com/show_bug.cgi?id=1847584 https://git.qemu.org/?p=qemu.git