CVE-2020-10761 - Reachable Assertion

Severity

50%

Complexity

31%

Confidentiality

23%

An assertion failure issue was found in the Network Block Device(NBD) Server in all QEMU versions before QEMU 5.0.1. This flaw occurs when an nbd-client sends a spec-compliant request that is near the boundary of maximum permitted request length. A remote nbd-client could use this flaw to crash the qemu-nbd server resulting in a denial of service.

CVSS 3.1 Base Score 5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L).

CVSS 2.0 Base Score 4. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:S/C:N/I:N/A:P).

Demo Examples

Reachable Assertion

CWE-617

In the excerpt below, an AssertionError (an unchecked exception) is thrown if the user hasn't entered an email address in an HTML form.


               
assert email != null;

Overview

First reported 4 years ago

2020-06-09 13:15:00

Last updated 4 years ago

2020-11-11 06:15:00

Affected Software

QEMU

Red Hat Enterprise Linux 8.0

8.0

Red Hat Enterprise Linux 8.0 Advanced Virtualization Edition

8.0

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10761

https://www.openwall.com/lists/oss-security/2020/06/09/1

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10761

Issue Tracking, Third Party Advisory

https://www.openwall.com/lists/oss-security/2020/06/09/1

Mailing List, Patch, Third Party Advisory

openSUSE-SU-2020:1108

https://security.netapp.com/advisory/ntap-20200731-0001/

USN-4467-1

GLSA-202011-09

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.