Test ID:	1.3.6.1.4.1.25623.1.0.704760
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory for qemu (DSA-4760-1)
Summary:	The remote host is missing an update for the 'qemu'; package(s) announced via the DSA-4760-1 advisory.
Description:	Summary: The remote host is missing an update for the 'qemu' package(s) announced via the DSA-4760-1 advisory. Vulnerability Insight: Multiple security issues were discovered in QEMU, a fast processor emulator: CVE-2020-12829 An integer overflow in the sm501 display device may result in denial of service. CVE-2020-14364 An out-of-bounds write in the USB emulation code may result in guest-to-host code execution. CVE-2020-15863 A buffer overflow in the XGMAC network device may result in denial of service or the execution of arbitrary code. CVE-2020-16092 A triggerable assert in the e1000e and vmxnet3 devices may result in denial of service. Affected Software/OS: 'qemu' package(s) on Debian Linux. Solution: For the stable distribution (buster), these problems have been fixed in version 1:3.1+dfsg-8+deb10u8. We recommend that you upgrade your qemu packages. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2020-12829 Common Vulnerability Exposure (CVE) ID: CVE-2020-14364 Common Vulnerability Exposure (CVE) ID: CVE-2020-15863 Common Vulnerability Exposure (CVE) ID: CVE-2020-16092
Copyright	Copyright (C) 2020 Greenbone Networks GmbH

This is only one of 85075 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.