Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2022:7967

Опубликовано: 15 нояб. 2022
Источник: rocky
Оценка: Moderate

Описание

Moderate: qemu-kvm security, bug fix, and enhancement update

Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM.

The following packages have been upgraded to a later upstream version: qemu-kvm (7.0.0). (BZ#2064757)

Security Fix(es):

  • QEMU: hcd-ehci: DMA reentrancy issue leads to use-after-free (CVE-2021-3750)

  • QEMU: fdc: heap buffer overflow in DMA read data transfers (CVE-2021-3507)

  • QEMU: intel-hda: segmentation fault due to stack overflow (CVE-2021-3611)

  • QEMU: NULL pointer dereference in pci_write() in hw/acpi/pcihp.c (CVE-2021-4158)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.

Затронутые продукты

  • Rocky Linux 9

НаименованиеАрхитектураРелизRPM
qemu-guest-agentx86_6413.el9qemu-guest-agent-7.0.0-13.el9.x86_64.rpm
qemu-imgx86_6413.el9qemu-img-7.0.0-13.el9.x86_64.rpm
qemu-kvmx86_6413.el9qemu-kvm-7.0.0-13.el9.x86_64.rpm
qemu-kvm-audio-pax86_6413.el9qemu-kvm-audio-pa-7.0.0-13.el9.x86_64.rpm
qemu-kvm-block-curlx86_6413.el9qemu-kvm-block-curl-7.0.0-13.el9.x86_64.rpm
qemu-kvm-block-rbdx86_6413.el9qemu-kvm-block-rbd-7.0.0-13.el9.x86_64.rpm
qemu-kvm-commonx86_6413.el9qemu-kvm-common-7.0.0-13.el9.x86_64.rpm
qemu-kvm-corex86_6413.el9qemu-kvm-core-7.0.0-13.el9.x86_64.rpm
qemu-kvm-device-display-virtio-gpux86_6413.el9qemu-kvm-device-display-virtio-gpu-7.0.0-13.el9.x86_64.rpm
qemu-kvm-device-display-virtio-gpu-glx86_6413.el9qemu-kvm-device-display-virtio-gpu-gl-7.0.0-13.el9.x86_64.rpm

Показывать по

Связанные CVE

CVE-2021-3507
CVE-2021-3611
CVE-2021-3750
CVE-2021-4158

Ссылки на источники

Исправления

Связанные уязвимости

oracle-oval логотип

ELSA-2022-7967

oracle-oval
больше 2 лет назад

ELSA-2022-7967: qemu-kvm security, bug fix, and enhancement update (MODERATE)

ubuntu логотип

CVE-2021-3507

CVSS3: 6.1
ubuntu
больше 4 лет назад

A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 (including). It could occur in fdctrl_transfer_handler() in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system. A privileged guest user could use this flaw to crash the QEMU process on the host resulting in DoS scenario, or potential information leakage from the host memory.

redhat логотип

CVE-2021-3507

CVSS3: 4.6
redhat
больше 4 лет назад

A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 (including). It could occur in fdctrl_transfer_handler() in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system. A privileged guest user could use this flaw to crash the QEMU process on the host resulting in DoS scenario, or potential information leakage from the host memory.

nvd логотип

CVE-2021-3507

CVSS3: 6.1
nvd
больше 4 лет назад

A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 (including). It could occur in fdctrl_transfer_handler() in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system. A privileged guest user could use this flaw to crash the QEMU process on the host resulting in DoS scenario, or potential information leakage from the host memory.

debian логотип

CVE-2021-3507

CVSS3: 6.1
debian
больше 4 лет назад

A heap buffer overflow was found in the floppy disk emulator of QEMU u ...