Описание
The ahci_commit_buf function in ide/ahci.c in QEMU allows attackers to cause a denial of service (NULL dereference) when the command header 'ad->cur_cmd' is null.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| qemu | unfixed | package | ||
| qemu | postponed | trixie | package | |
| qemu | postponed | bookworm | package | |
| qemu | postponed | bullseye | package | |
| qemu | postponed | buster | package | |
| qemu-kvm | removed | package |
Примечания
https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01358.html
https://patchew.org/QEMU/20190808065636.28787-1-ppandit@redhat.com/
patched function introduced in 2014/2.1.50 but affected code pre-existed
https://github.com/qemu/qemu/commit/659142ecf71a0da240ab0ff7cf929ee25c32b9bc (v2.2.0-rc0)
No sanctioned upstream patch as of 2024-08-06
EPSS
Связанные уязвимости
The ahci_commit_buf function in ide/ahci.c in QEMU allows attackers to cause a denial of service (NULL dereference) when the command header 'ad->cur_cmd' is null.
The ahci_commit_buf function in ide/ahci.c in QEMU allows attackers to cause a denial of service (NULL dereference) when the command header 'ad->cur_cmd' is null.
The ahci_commit_buf function in ide/ahci.c in QEMU allows attackers to cause a denial of service (NULL dereference) when the command header 'ad->cur_cmd' is null.
The ahci_commit_buf function in ide/ahci.c in QEMU allows attackers to cause a denial of service (NULL dereference) when the command header 'ad->cur_cmd' is null.
Уязвимость программного обеспечения для эмуляции аппаратного обеспечения различных платформ QEMU, позволяющая нарушителю вызвать отказ в обслуживании
EPSS