Описание
A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS) attack via improper synchronization during socket closure when a client keeps a socket open as the server is taken offline.
Отчет
This issue is classified as Moderate severity rather than Important because it primarily results in a denial of service condition rather than a more crucial impact such as data corruption, unauthorized access, or system compromise. The NULL pointer dereference occurs under specific conditions where the NBD server is stopped before nbd_blockdev_client_closed is called, which leads to a segmentation fault and crash of the QEMU process. However, this scenario is mitigated by the fact that it requires a particular sequence of events involving client connection handling and server shutdown. Additionally, proper network segmentation and the use of secure client connections can further reduce the likelihood of this issue being exploited.
Меры по смягчению последствий
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 10 | qemu-kvm | Not affected | ||
| Red Hat Enterprise Linux 6 | qemu-kvm | Out of support scope | ||
| Red Hat Enterprise Linux 7 | qemu-kvm | Out of support scope | ||
| Red Hat Enterprise Linux 7 | qemu-kvm-ma | Out of support scope | ||
| Red Hat Enterprise Linux 8 Advanced Virtualization | virt:8.2/qemu-kvm | Will not fix | ||
| Red Hat Enterprise Linux 8 Advanced Virtualization | virt:av/qemu-kvm | Will not fix | ||
| Red Hat Enterprise Linux 8 Advanced Virtualization | virt-devel:8.2/qemu-kvm | Will not fix | ||
| Red Hat Enterprise Linux 8 Advanced Virtualization | virt-devel:av/qemu-kvm | Will not fix | ||
| Red Hat Enterprise Linux 8 | virt-devel | Fixed | RHSA-2024:6964 | 24.09.2024 |
| Red Hat Enterprise Linux 8 | virt | Fixed | RHSA-2024:6964 | 24.09.2024 |
Показывать по
Дополнительная информация
Статус:
EPSS
7.5 High
CVSS3
Связанные уязвимости
A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS) attack via improper synchronization during socket closure when a client keeps a socket open as the server is taken offline.
A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS) attack via improper synchronization during socket closure when a client keeps a socket open as the server is taken offline.
A flaw was found in the QEMU NBD Server. This vulnerability allows a d ...
A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS) attack via improper synchronization during socket closure when a client keeps a socket open as the server is taken offline.
ELSA-2024-12792: virt:kvm_utils3 security update (MODERATE)
EPSS
7.5 High
CVSS3