CVE-2025-54567

Опубликовано: 25 июл. 2025

Источник: debian

EPSS Низкий

Описание

hw/pci/pcie_sriov.c in QEMU through 10.0.3 mishandles the VF Enable bit write mask, a related issue to CVE-2024-26327.

Пакет	Статус	Релиз	Тип
qemu	unfixed		package
qemu	not-affected	bookworm	package
qemu	not-affected	bullseye	package

https://lore.kernel.org/qemu-devel/20250713-wmask-v1-1-4c744cdb32c0@rsg.ci.i.u-tokyo.ac.jp/
Introduced with: https://gitlab.com/qemu-project/qemu/-/commit/5e7dd17e43486f41d4f88dbefd7219f0524f424c (v10.0.0-rc0)
Introduced with: https://gitlab.com/qemu-project/qemu/-/commit/f9efcd47110de43dd841ada5bd1a40ec169eabca (v10.0.0-rc0)

EPSS

Процентиль: 2%

0.00016

Низкий

CVE-2025-54567

CVSS3: 4.2

ubuntu

13 дней назад

hw/pci/pcie_sriov.c in QEMU through 10.0.3 mishandles the VF Enable bit write mask, a related issue to CVE-2024-26327.

CVE-2025-54567

CVSS3: 4.2

nvd

13 дней назад

hw/pci/pcie_sriov.c in QEMU through 10.0.3 mishandles the VF Enable bit write mask, a related issue to CVE-2024-26327.

GHSA-c2q6-w8rj-wvhw

CVSS3: 4.2

github

13 дней назад

hw/pci/pcie_sriov.c in QEMU through 10.0.3 mishandles the VF Enable bit write mask, a related issue to CVE-2024-26327.

EPSS

Процентиль: 2%

0.00016

Низкий