CVE-2023-42467

Опубликовано: 11 сент. 2023

Источник: redhat

CVSS3: 2.3

EPSS Низкий

Описание

QEMU through 8.0.0 could trigger a division by zero in scsi_disk_reset in hw/scsi/scsi-disk.c because scsi_disk_emulate_mode_select does not prevent s->qdev.blocksize from being 256. This stops QEMU and the guest immediately.

A denial of service vulnerability was found in the qemu package. A division by zero in the scsi_disk_reset function can cause QEMU and the guest to stop immediately.

Отчет

Triggering this bug requires kernel or root privileges in the guest VM because it requires direct hardware access. Anyone who has these privileges could also just perform a regular shutdown of the VM, with only a very slightly different result.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	qemu-kvm	Not affected
Red Hat Enterprise Linux 7	qemu-kvm	Not affected
Red Hat Enterprise Linux 7	qemu-kvm-ma	Not affected
Red Hat Enterprise Linux 8	virt:rhel/qemu-kvm	Not affected
Red Hat Enterprise Linux 8 Advanced Virtualization	virt:av/qemu-kvm	Fix deferred
Red Hat Enterprise Linux 9	qemu-kvm	Fixed	RHSA-2024:2135	30.04.2024

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-369

https://bugzilla.redhat.com/show_bug.cgi?id=2238291QEMU: am53c974: denial of service due to division by zero

EPSS

Процентиль: 1%

0.00012

Низкий

2.3 Low

CVSS3

Связанные уязвимости

CVE-2023-42467

CVSS3: 5.5

ubuntu

почти 2 года назад

CVE-2023-42467

CVSS3: 5.5

nvd

почти 2 года назад

CVE-2023-42467

CVSS3: 5.5

msrc

9 месяцев назад

Описание отсутствует

CVE-2023-42467

CVSS3: 5.5

debian

почти 2 года назад

QEMU through 8.0.0 could trigger a division by zero in scsi_disk_reset ...

GHSA-q76v-8f8c-4c2j

CVSS3: 5.5

github

почти 2 года назад

EPSS

Процентиль: 1%

0.00012

Низкий

2.3 Low

CVSS3