CVE 2019-3812
QEMU, through version 2.10 and through version 3.1.0, is vulnerable to an out-of-bounds read of up to 128 bytes in the hw/i2c/
Related bugs and status
CVE-2019-3812 (Candidate) is related to these bugs:
Bug #1782206: KVM enable SnowRidge Accelerator Interfacing Architecture (AIA)
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1782206 | KVM enable SnowRidge Accelerator Interfacing Architecture (AIA) | xen (Ubuntu) | Wishlist | Incomplete | ||
| 1782206 | KVM enable SnowRidge Accelerator Interfacing Architecture (AIA) | qemu (Ubuntu) | Wishlist | Fix Released | ||
| 1782206 | KVM enable SnowRidge Accelerator Interfacing Architecture (AIA) | linux (Ubuntu) | Wishlist | Triaged | ||
Bug #1818264: QEMU 2.11.1 VM crash when performing block pull. bdrv_co_do_copy_on_readv
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1818264 | QEMU 2.11.1 VM crash when performing block pull. bdrv_co_do_copy_on_readv | qemu (Ubuntu) | Undecided | Fix Released | ||
| 1818264 | QEMU 2.11.1 VM crash when performing block pull. bdrv_co_do_copy_on_readv | qemu (Ubuntu Cosmic) | Undecided | Fix Released | ||
| 1818264 | QEMU 2.11.1 VM crash when performing block pull. bdrv_co_do_copy_on_readv | qemu (Ubuntu Bionic) | Undecided | Fix Released | ||
Bug #1820291: fsfreeze-hook script is misplaced in qemu-guest-agent
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1820291 | fsfreeze-hook script is misplaced in qemu-guest-agent | qemu (Ubuntu) | Undecided | Fix Released | ||
| 1820291 | fsfreeze-hook script is misplaced in qemu-guest-agent | qemu (Ubuntu Cosmic) | Undecided | Fix Released | ||
| 1820291 | fsfreeze-hook script is misplaced in qemu-guest-agent | qemu (Ubuntu Bionic) | Undecided | Fix Released | ||
Bug #1828038: [19.10 FEAT] Update hardware CPU Model z14
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1828038 | [19.10 FEAT] Update hardware CPU Model z14 | qemu (Ubuntu) | Undecided | Fix Released | ||
| 1828038 | [19.10 FEAT] Update hardware CPU Model z14 | Ubuntu on IBM z Systems | High | Fix Released | ||
Bug #1830238: [19.10 FEAT] zKVM: Add hardware CPU Model - qemu part
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1830238 | [19.10 FEAT] zKVM: Add hardware CPU Model - qemu part | qemu (Ubuntu) | Undecided | Fix Released | ||
| 1830238 | [19.10 FEAT] zKVM: Add hardware CPU Model - qemu part | Ubuntu on IBM z Systems | High | Fix Released | ||
Bug #1830243: [19.10 FEAT] KVM: Secure Linux Boot Toleration - qemu
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1830243 | [19.10 FEAT] KVM: Secure Linux Boot Toleration - qemu | qemu (Ubuntu) | Undecided | Fix Released | ||
| 1830243 | [19.10 FEAT] KVM: Secure Linux Boot Toleration - qemu | Ubuntu on IBM z Systems | High | Fix Released | ||
| 1830243 | [19.10 FEAT] KVM: Secure Linux Boot Toleration - qemu | qemu (Ubuntu Bionic) | Undecided | Fix Released | ||
| 1830243 | [19.10 FEAT] KVM: Secure Linux Boot Toleration - qemu | qemu (Ubuntu Eoan) | Undecided | Fix Released | ||
| 1830243 | [19.10 FEAT] KVM: Secure Linux Boot Toleration - qemu | qemu (Ubuntu Xenial) | Undecided | Fix Released | ||
| 1830243 | [19.10 FEAT] KVM: Secure Linux Boot Toleration - qemu | qemu (Ubuntu Disco) | Undecided | Fix Released | ||
| 1830243 | [19.10 FEAT] KVM: Secure Linux Boot Toleration - qemu | qemu (Ubuntu Cosmic) | Undecided | Won't Fix | ||
Bug #1832622: QEMU - count cache flush Spectre v2 mitigation (CVE) (required for POWER9 DD2.3)
See the 
CVE page on Mitre.org
for more details.
