What is CVE-2019-6778?

CVE-2019-6778 is a high-severity software vulnerability (Out-of-bounds write) with a CVSS score of 7.8. In QEMU 3.0.0, tcp_emu in slirp/tcp_subr.c has a heap-based buffer overflow.

Is CVE-2019-6778 being actively exploited?

It is not currently in CISA's KEV catalog. Its EPSS exploitation probability is 1%.

What products does CVE-2019-6778 affect?

Tracked products affected include QEMU, Fedora. Check the version you run to see whether it is affected.

How do I fix CVE-2019-6778?

Apply the vendor fix promptly. An official patch or advisory is available. Upgrade affected products to a fixed version.

← All products

CVE-2019-6778

HIGH severity · CVSS 7.8 · Out-of-bounds write

7.8CVSS HIGH

Summary

In QEMU 3.0.0, tcp_emu in slirp/tcp_subr.c has a heap-based buffer overflow.

Impact & exploitability

Attack vectorLocal

Attack complexityLow

Privileges requiredLow

User interactionNone

Confidentiality impactHigh

Integrity impactHigh

Availability impactHigh

Exploit probability (EPSS)1%

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products we track (2)

QEMU Fedora

Recommendation

Apply the vendor fix promptly. Open any affected product above for its exact safe version.

Official patch: http://www.openwall.com/lists/oss-security/2019/01/24/5 ↗

Additional information

NVD record
http://www.openwall.com/lists/oss-security/2019/01/24/5Patch
http://lists.opensuse.org/opensuse-security-announce/2019-02/msg00073.htmlAdvisory
http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.htmlAdvisory
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00072.html
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00007.html
http://www.securityfocus.com/bid/106758Advisory
https://access.redhat.com/errata/RHSA-2019:1883