Описание
A flaw was found in the QEMU Virtio PCI Bindings (hw/virtio/virtio-pci.c). An improper release and use of the irqfd for vector 0 during the boot process leads to a guest triggerable crash via vhost_net_stop(). This flaw allows a malicious guest to crash the QEMU process on the host.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 9.0.2+ds-4ubuntu8 |
| esm-infra-legacy/trusty | not-affected | code not present |
| esm-infra/bionic | not-affected | code not present |
| esm-infra/focal | not-affected | code not present |
| esm-infra/xenial | not-affected | code not present |
| focal | not-affected | code not present |
| jammy | not-affected | code not present |
| mantic | ignored | end of life, was needs-triage |
| noble | released | 1:8.2.2+ds-0ubuntu1.4 |
| oracular | released | 1:9.0.2+ds-4ubuntu5.1 |
Показывать по
EPSS
5.5 Medium
CVSS3
Связанные уязвимости
A flaw was found in the QEMU Virtio PCI Bindings (hw/virtio/virtio-pci.c). An improper release and use of the irqfd for vector 0 during the boot process leads to a guest triggerable crash via vhost_net_stop(). This flaw allows a malicious guest to crash the QEMU process on the host.
A flaw was found in the QEMU Virtio PCI Bindings (hw/virtio/virtio-pci.c). An improper release and use of the irqfd for vector 0 during the boot process leads to a guest triggerable crash via vhost_net_stop(). This flaw allows a malicious guest to crash the QEMU process on the host.
A flaw was found in the QEMU Virtio PCI Bindings (hw/virtio/virtio-pci ...
EPSS
5.5 Medium
CVSS3