CVE-2024-3447

Опубликовано: 04 апр. 2024

Источник: redhat

CVSS3: 6

EPSS Низкий

Описание

A heap-based buffer overflow was found in the SDHCI device emulation of QEMU. The bug is triggered when both s->data_count and the size of s->fifo_buffer are set to 0x200, leading to an out-of-bound access. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.

Отчет

This CVE does not affect the versions of qemu-kvm as shipped with Red Hat Enterprise Linux and RHEL Advanced Virtualization, as they do not include support for SDHCI device emulation.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	qemu-kvm	Not affected
Red Hat Enterprise Linux 7	qemu-kvm	Not affected
Red Hat Enterprise Linux 7	qemu-kvm-ma	Not affected
Red Hat Enterprise Linux 8	virt:rhel/qemu-kvm	Not affected
Red Hat Enterprise Linux 8 Advanced Virtualization	virt:av/qemu-kvm	Not affected
Red Hat Enterprise Linux 9	qemu-kvm	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-122

https://bugzilla.redhat.com/show_bug.cgi?id=2274123QEMU: sdhci: heap buffer overflow in sdhci_write_dataport()

EPSS

Процентиль: 4%

0.00021

Низкий

6 Medium

CVSS3

Связанные уязвимости

CVE-2024-3447

CVSS3: 6

ubuntu

7 месяцев назад

A heap-based buffer overflow was found in the SDHCI device emulation of QEMU. The bug is triggered when both `s->data_count` and the size of `s->fifo_buffer` are set to 0x200, leading to an out-of-bound access. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.

CVE-2024-3447

CVSS3: 6

nvd

7 месяцев назад

CVE-2024-3447

CVSS3: 6

msrc

около 2 месяцев назад

Описание отсутствует

CVE-2024-3447

CVSS3: 6

debian

7 месяцев назад

A heap-based buffer overflow was found in the SDHCI device emulation o ...

GHSA-mq5w-grf9-5rp9

CVSS3: 6

github

7 месяцев назад

EPSS

Процентиль: 4%

0.00021

Низкий

6 Medium

CVSS3