CVE-2023-40360

Опубликовано: 06 авг. 2023

Источник: redhat

CVSS3: 6

Описание

QEMU through 8.0.4 accesses a NULL pointer in nvme_directive_receive in hw/nvme/ctrl.c because there is no check for whether an endurance group is configured before checking whether Flexible Data Placement is enabled.

A flaw was found in the virtual nvme device in QEMU. The nvme_directive_receive() function does not check if an endurance group has been configured (set) prior to testing if flexible data placement is enabled, potentially leading to a NULL pointer dereference issue.

Отчет

The qemu-kvm packages as shipped with Red Hat Enterprise Linux are not affected by this flaw as they do not include support for NVMe emulation.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	qemu-kvm	Not affected
Red Hat Enterprise Linux 7	qemu-kvm	Not affected
Red Hat Enterprise Linux 7	qemu-kvm-ma	Not affected
Red Hat Enterprise Linux 8	virt:rhel/qemu-kvm	Not affected
Red Hat Enterprise Linux 8 Advanced Virtualization	virt:av/qemu-kvm	Not affected
Red Hat Enterprise Linux 9	qemu-kvm	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-476

https://bugzilla.redhat.com/show_bug.cgi?id=2232677QEMU: NVMe: NULL pointer dereference in nvme_directive_receive()

6 Medium

CVSS3

Связанные уязвимости

CVE-2023-40360

CVSS3: 5.5

ubuntu

почти 2 года назад

CVE-2023-40360

CVSS3: 5.5

nvd

почти 2 года назад

CVE-2023-40360

CVSS3: 5.5

debian

почти 2 года назад

QEMU through 8.0.4 accesses a NULL pointer in nvme_directive_receive i ...

GHSA-gjhx-wc4x-rwwp

CVSS3: 5.5

github

почти 2 года назад

BDU:2024-08735

CVSS3: 5.5

fstec

почти 2 года назад

Уязвимость функции nvme_directive_receive() виртуального устройства NVMe эмулятора аппаратного обеспечения QEMU, позволяющая нарушителю вызвать отказ в обслуживании

6 Medium

CVSS3