Bug 1140124 - VUL-0: CVE-2019-12928: xen: QEMU machine protocol migrate command execution
VUL-0: CVE-2019-12928: xen: QEMU machine protocol migrate command execution
Status: RESOLVED INVALID
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P3 - Medium : Normal
: ---
Assigned To: Charles Arnold
Security Team bot
https://smash.suse.de/issue/235639/
:
Depends on: CVE-2019-12928
Blocks:
  Show dependency treegraph
 
Reported: 2019-07-02 16:12 UTC by Marcus Meissner
Modified: 2019-07-08 09:05 UTC (History)
2 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Marcus Meissner 2019-07-02 16:12:15 UTC
+++ This bug was initially created as a clone of Bug #1139714 +++

rh#1724812

The QMP migrate command in QEMU version 4.0.0 and earlier is vulnerable to OS command injection, which allows the remote attacker to achieve code execution, denial of service, or information disclosure by sending a crafted QMP command to the listening server.

https://fakhrizulkifli.github.io/posts/2019/06/05/CVE-2019-12928/

References:
https://bugzilla.redhat.com/show_bug.cgi?id=1724812
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-12928
http://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-12928.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12928
https://fakhrizulkifli.github.io/posts/2019/06/05/CVE-2019-12928/
Comment 1 Marcus Meissner 2019-07-08 09:05:28 UTC
seems in all qemu / kvm, but not in xen