CVE-2020-10702

Published: Jun 4, 2020Modified: Nov 21, 2024

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

A flaw was found in QEMU in the implementation of the Pointer Authentication (PAuth) support for ARM introduced in version 4.0 and fixed in version 5.0.0. A general failure of the signature generation process caused every PAuth-enforced pointer to be signed with the same signature. A local attacker could obtain the signature of a protected pointer and abuse this flaw to bypass PAuth protection for all programs running on QEMU.

Affected (1)

Products: Qemu: Qemu

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Qemu Qemu	From 4.0.0 to 5.0.0

Related CWEs

Missing Cryptographic Step

The product does not implement a required step in a cryptographic algorithm, resulting in weaker encryption than advertised by the algorithm.

References (6)

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10702

Source: secalert@redhat.com

Issue TrackingThird Party Advisory

https://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=de0b1bae6461f67243282555475f88b2384a1eb9

Source: secalert@redhat.com

https://security.netapp.com/advisory/ntap-20200724-0007/

Source: secalert@redhat.com

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10702

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingThird Party Advisory

https://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=de0b1bae6461f67243282555475f88b2384a1eb9

Source: af854a3a-2127-422b-91ae-364da2661108

https://security.netapp.com/advisory/ntap-20200724-0007/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.