CVE-2021-45464

Опубликовано: 15 апр. 2023

Источник: debian

Описание

kvmtool through 39181fc allows an out-of-bounds write, related to virtio/balloon.c and virtio/pci.c. This allows a guest OS user to execute arbitrary code on the host machine.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
kvmtool	removed			package

Примечания

https://www.kalmarunionen.dk/writeups/2021/hxp-2021/lkvm/

Связанные уязвимости

CVE-2021-45464

CVSS3: 8.8

ubuntu

почти 3 года назад

kvmtool through 39181fc allows an out-of-bounds write, related to virtio/balloon.c and virtio/pci.c. This allows a guest OS user to execute arbitrary code on the host machine.

CVE-2021-45464

CVSS3: 8.8

nvd

почти 3 года назад

kvmtool through 39181fc allows an out-of-bounds write, related to virtio/balloon.c and virtio/pci.c. This allows a guest OS user to execute arbitrary code on the host machine.

GHSA-42pc-9g8v-prfm

CVSS3: 8.8

github

почти 3 года назад

kvmtool through 39181fc allows an out-of-bounds write, related to virtio/balloon.c and virtio/pci.c. This allows a guest OS user to execute arbitrary code on the host machine.