CVE-2021-3608
6.0MEDIUMA flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device in versions prior to 6.1.0. The issue occurs while handling a "PVRDMA_REG_DSRHIGH" write from the guest and may result i
Publicado: 2/24/2022Actualizado: 11/21/2024
Descripción
A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device in versions prior to 6.1.0. The issue occurs while handling a "PVRDMA_REG_DSRHIGH" write from the guest and may result in a crash of QEMU or cause undefined behavior due to the access of an uninitialized pointer. The highest threat from this vulnerability is to system availability.
Análisis IAImpulsado por IA
Productos Afectados
qemuqemu
debiandebian_linux
10.0
fedoraprojectfedora
34
Referencias
- https://bugzilla.redhat.com/show_bug.cgi?id=1973383Issue TrackingThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2022/09/msg00008.htmlMailing ListThird Party Advisory
- https://lists.gnu.org/archive/html/qemu-devel/2021-06/msg07926.htmlMailing ListPatchThird Party Advisory
- https://security.gentoo.org/glsa/202208-27Third Party Advisory
- https://security.netapp.com/advisory/ntap-20220318-0002/Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1973383Issue TrackingThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2022/09/msg00008.htmlMailing ListThird Party Advisory
- https://lists.gnu.org/archive/html/qemu-devel/2021-06/msg07926.htmlMailing ListPatchThird Party Advisory
- https://security.gentoo.org/glsa/202208-27Third Party Advisory
- https://security.netapp.com/advisory/ntap-20220318-0002/Third Party Advisory