Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2023-1544

Опубликовано: 23 мар. 2023
Источник: debian
EPSS Низкий

Описание

A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used as a ring of descriptors for CQ and async events, potentially leading to an out-of-bounds read and crash of QEMU.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
qemufixed1:8.2.0+ds-1package
qemufixed1:7.2+dfsg-7+deb12u3bookwormpackage
qemuignoredbusterpackage

Примечания

  • https://lists.nongnu.org/archive/html/qemu-devel/2023-03/msg00206.html

  • Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/85fc35afa93c7320d1641d344d0c5dfbe341d087 (v8.2.0-rc0)

  • Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/06c9bf032f5581629819affd95fcbd7c54cf493a (v7.2.7)

  • PVRDMA support not enabled in the binary packages until 1:3.1+dfsg-3, disabled again in 1:3.1+dfsg-4 until 1:4.1-1

  • Not fixed in 1:5.2+dfsg-11+deb11u3 as claimed in the changelog, contains the

  • CVE-2022-1050 fix instead. In unstable 1:8.0.2+dfsg-1 disabled support for

  • pvrdma (addressing/mitigating) CVE-2023-1544. Sourcewise fixed in v8.2.0

  • upstream.

EPSS

Процентиль: 14%
0.00046
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2023-1544

CVSS3: 6
ubuntu
больше 2 лет назад

A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used as a ring of descriptors for CQ and async events, potentially leading to an out-of-bounds read and crash of QEMU.

redhat логотип

CVE-2023-1544

CVSS3: 6
redhat
больше 2 лет назад

A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used as a ring of descriptors for CQ and async events, potentially leading to an out-of-bounds read and crash of QEMU.

nvd логотип

CVE-2023-1544

CVSS3: 6
nvd
больше 2 лет назад

A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used as a ring of descriptors for CQ and async events, potentially leading to an out-of-bounds read and crash of QEMU.

msrc логотип

CVE-2023-1544

CVSS3: 6.3
msrc
2 месяца назад

Описание отсутствует

github логотип

GHSA-8j56-863j-pww9

CVSS3: 5.5
github
больше 2 лет назад

A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used as a ring of descriptors for CQ and async events, potentially leading to an out-of-bounds read and crash of QEMU.

EPSS

Процентиль: 14%
0.00046
Низкий