CVE-2021-3392
Description
A use-after-free flaw was found in the MegaRAID emulator of QEMU. This issue occurs while processing SCSI I/O requests in the case of an error mptsas_free_request() that does not dequeue the request object req from a pending requests queue. This flaw allows a privileged guest user to crash the QEMU process on the host, resulting in a denial of service. Versions between 2.10.0 and 5.2.0 are potentially affected.
Risk Information
Base Score
3.2
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L
EPSS Score
Exploitation Probability
0.027
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are affected in QEMU 5.1.1 | Windows |
| Machine emulator and virtualizer (USN-5010-1) qemu_5.0-5ubuntu9.9_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-5010-1) qemu_4.2-3ubuntu6.17_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-5010-1) qemu_5.2+dfsg-9ubuntu3.1_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-5010-1) qemu_2.11+dfsg-1ubuntu7.37_i386.deb | Linux |
| Machine emulator and virtualizer (USN-5010-1) qemu_2.11+dfsg-1ubuntu7.37_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-5010-1) qemu-system_5.0-5ubuntu9.9_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-5010-1) qemu-system_4.2-3ubuntu6.17_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-5010-1) qemu-system_5.2+dfsg-9ubuntu3.1_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-5010-1) qemu-system_2.11+dfsg-1ubuntu7.37_i386.deb | Linux |
| Machine emulator and virtualizer (USN-5010-1) qemu-system_2.11+dfsg-1ubuntu7.37_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-5010-1) qemu-system-x86_5.0-5ubuntu9.9_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-5010-1) qemu-system-x86_4.2-3ubuntu6.17_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-5010-1) qemu-system-x86_5.2+dfsg-9ubuntu3.1_amd64.deb | Linux |
| Qemu update (ELSA-2021-9425) qemu-4.2.1-11.el7.x86_64.rpm | Linux |
| Qemu-block-gluster update (ELSA-2021-9425) qemu-block-gluster-4.2.1-11.el7.x86_64.rpm | Linux |
| Qemu-block-iscsi update (ELSA-2021-9425) qemu-block-iscsi-4.2.1-11.el7.x86_64.rpm | Linux |
| Qemu-block-rbd update (ELSA-2021-9425) qemu-block-rbd-4.2.1-11.el7.x86_64.rpm | Linux |
| Qemu-common update (ELSA-2021-9425) qemu-common-4.2.1-11.el7.x86_64.rpm | Linux |
| Qemu-img update (ELSA-2021-9425) qemu-img-4.2.1-11.el7.x86_64.rpm | Linux |
| Qemu-kvm update (ELSA-2021-9425) qemu-kvm-4.2.1-11.el7.x86_64.rpm | Linux |
| Qemu-kvm-core update (ELSA-2021-9425) qemu-kvm-core-4.2.1-11.el7.x86_64.rpm | Linux |
| Qemu-system-x86 update (ELSA-2021-9425) qemu-system-x86-4.2.1-11.el7.x86_64.rpm | Linux |
| Qemu-system-x86-core update (ELSA-2021-9425) qemu-system-x86-core-4.2.1-11.el7.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234