Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2024-24474

Опубликовано: 20 фев. 2024
Источник: debian
EPSS Низкий

Описание

QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in esp_do_nodma in hw/scsi/esp.c because of an underflow of async_len.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
qemufixed1:8.2.0+ds-1package
qemufixed1:7.2+dfsg-7+deb12u3bookwormpackage
qemunot-affectedbullseyepackage
qemunot-affectedbusterpackage

Примечания

  • https://gitlab.com/qemu-project/qemu/-/issues/1810

  • Introduced by: https://gitlab.com/qemu-project/qemu/-/commit/1b9e48a5bdbc96833113f249909af0d30a76cc25 (v6.0.0-rc0)

  • Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/77668e4b9bca03a856c27ba899a2513ddf52bb52 (v8.2.0-rc0)

EPSS

Процентиль: 32%
0.00121
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2024-24474

CVSS3: 8.8
ubuntu
больше 1 года назад

QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in esp_do_nodma in hw/scsi/esp.c because of an underflow of async_len.

redhat логотип

CVE-2024-24474

CVSS3: 5.3
redhat
больше 1 года назад

QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in esp_do_nodma in hw/scsi/esp.c because of an underflow of async_len.

nvd логотип

CVE-2024-24474

CVSS3: 8.8
nvd
больше 1 года назад

QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in esp_do_nodma in hw/scsi/esp.c because of an underflow of async_len.

msrc логотип

CVE-2024-24474

CVSS3: 8.8
msrc
9 месяцев назад

Описание отсутствует

redos логотип

ROS-20240423-09

CVSS3: 8.2
redos
около 1 года назад

Уязвимость qemu

EPSS

Процентиль: 32%
0.00121
Низкий