Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2023-4135

Опубликовано: 04 авг. 2023
Источник: debian
EPSS Низкий

Описание

A heap out-of-bounds memory read flaw was found in the virtual nvme device in QEMU. The QEMU process does not validate an offset provided by the guest before computing a host heap pointer, which is used for copying data back to the guest. Arbitrary heap memory relative to an allocated buffer can be disclosed.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
qemufixed1:8.0.4+dfsg-2package
qemunot-affectedbookwormpackage
qemunot-affectedbullseyepackage
qemunot-affectedbusterpackage

Примечания

  • https://bugzilla.redhat.com/show_bug.cgi?id=2229101

  • https://www.zerodayinitiative.com/advisories/ZDI-CAN-21521

  • Introduced by: https://gitlab.com/qemu-project/qemu/-/commit/73064edfb864743cde2c08f319609344af02aeb3 (v8.0.0-rc0)

  • Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/ecb1b7b082d3b7dceff0e486a114502fc52c0fdf (v8.1.0-rc4)

EPSS

Процентиль: 1%
0.00012
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2023-4135

CVSS3: 6
ubuntu
почти 2 года назад

A heap out-of-bounds memory read flaw was found in the virtual nvme device in QEMU. The QEMU process does not validate an offset provided by the guest before computing a host heap pointer, which is used for copying data back to the guest. Arbitrary heap memory relative to an allocated buffer can be disclosed.

redhat логотип

CVE-2023-4135

CVSS3: 6
redhat
почти 2 года назад

A heap out-of-bounds memory read flaw was found in the virtual nvme device in QEMU. The QEMU process does not validate an offset provided by the guest before computing a host heap pointer, which is used for copying data back to the guest. Arbitrary heap memory relative to an allocated buffer can be disclosed.

nvd логотип

CVE-2023-4135

CVSS3: 6
nvd
почти 2 года назад

A heap out-of-bounds memory read flaw was found in the virtual nvme device in QEMU. The QEMU process does not validate an offset provided by the guest before computing a host heap pointer, which is used for copying data back to the guest. Arbitrary heap memory relative to an allocated buffer can be disclosed.

github логотип

GHSA-fw85-m9vg-m8jv

CVSS3: 6
github
почти 2 года назад

A heap out-of-bounds memory read flaw was found in the virtual nvme device in QEMU. The QEMU process does not validate an offset provided by the guest before computing a host heap pointer, which is used for copying data back to the guest. Arbitrary heap memory relative to an allocated buffer can be disclosed.

fstec логотип

BDU:2024-08736

CVSS3: 6.5
fstec
почти 2 года назад

Уязвимость функции nvme_fdp_events() виртуального устройства NVMe эмулятора аппаратного обеспечения QEMU, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации

EPSS

Процентиль: 1%
0.00012
Низкий