Lucene search
Redhat.comRH:CVE-2019-13164HistoryOct 27, 2019 - 6:29 p.m.
CVE-2019-13164
2019-10-2718:29:46
redhat.com
access.redhat.com
11
0.001 Low
EPSS
Percentile
24.3%
qemu-bridge-helper.c in QEMU 3.1 and 4.0.0 does not ensure that a network interface name (obtained from bridge.conf or a --br=bridge option) is limited to the IFNAMSIZ size, which can lead to an ACL bypass.
Mitigation
This flaw can only be exploited if /etc/qemu*/bridge.conf contains a line containing allow all or at least one line with a bridge name of at least 15 characters.
Related
ubuntucve
ubuntucve
CVE-2019-13164
2019-07-03 00:00:00
cvelist
cvelist
CVE-2019-13164
2019-07-03 13:56:52
cve
cve
CVE-2019-13164
2019-07-03 14:15:10
prion
prion
Out-of-bounds
2019-07-03 14:15:00
osv
osv
CVE-2019-13164
2019-07-03 14:15:10
qemu - security update
2019-09-02 00:00:00
qemu - security update
2019-08-24 00:00:00
nvd
nvd
CVE-2019-13164
2019-07-03 14:15:10
debiancve
debiancve
CVE-2019-13164
2019-07-03 14:15:10
nessus
nessus
GLSA-202003-66 : QEMU: Multiple vulnerabilities
2020-03-31 00:00:00
Debian DSA-4512-1 : qemu - security update
2019-09-03 00:00:00
Debian DSA-4506-1 : qemu - security update
2019-08-27 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-4512-1)
2019-09-03 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:2157-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:2221-1)
2021-04-19 00:00:00
gentoo
gentoo
QEMU: Multiple vulnerabilities
2020-03-30 00:00:00
debian
debian
[SECURITY] [DSA 4512-1] qemu security update
2019-09-02 17:58:18
[SECURITY] [DSA 4506-1] qemu security update
2019-08-24 09:55:59
[SECURITY] [DLA 1927-1] qemu security update
2019-09-20 09:19:02
suse
suse
Security update for qemu (important)
2019-09-03 00:00:00
Security update for qemu (important)
2019-09-01 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2019-11-14 00:00:00
QEMU vulnerabilities
2019-11-14 00:00:00
ibm
ibm
Security Bulletin: Vyatta 5600 vRouter Software Patches - Release 1801-ze
2020-07-24 21:16:35