Описание
A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used as a ring of descriptors for CQ and async events, potentially leading to an out-of-bounds read and crash of QEMU.
Ссылки
- Issue TrackingMailing ListPatchVendor Advisory
- Mailing ListPatchThird Party Advisory
- Issue TrackingMailing ListPatchVendor Advisory
- Mailing ListPatchThird Party Advisory
Уязвимые конфигурации
EPSS
6 Medium
CVSS3
6.3 Medium
CVSS3
Дефекты
Связанные уязвимости
A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used as a ring of descriptors for CQ and async events, potentially leading to an out-of-bounds read and crash of QEMU.
A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used as a ring of descriptors for CQ and async events, potentially leading to an out-of-bounds read and crash of QEMU.
A flaw was found in the QEMU implementation of VMWare's paravirtual RD ...
A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used as a ring of descriptors for CQ and async events, potentially leading to an out-of-bounds read and crash of QEMU.
EPSS
6 Medium
CVSS3
6.3 Medium
CVSS3