CVE-2021-3611
Description
A stack overflow vulnerability was found in the Intel HD Audio device (intel-hda) of QEMU. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition. The highest threat from this vulnerability is to system availability. This flaw affects QEMU versions prior to 7.0.0.
Risk Information
Base Score
6.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.017
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-guest-agent-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-img-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-audio-pa-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-block-curl-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-block-rbd-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-common-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-core-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-debugsource-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-device-display-virtio-gpu-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-device-display-virtio-gpu-gl-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-device-display-virtio-gpu-pci-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-device-display-virtio-gpu-pci-gl-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-device-display-virtio-vga-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-device-display-virtio-vga-gl-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-device-usb-host-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-device-usb-redirect-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-docs-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-tools-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-ui-egl-headless-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-kvm-ui-opengl-7.0.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7967) qemu-kvm security, bug fix, and enhancement update qemu-pr-helper-7.0.0-13.el9.x86_64.rpm | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu_4.2-3ubuntu6.28_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu_6.2+dfsg-2ubuntu6.16_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system_4.2-3ubuntu6.28_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system_7.2+dfsg-5ubuntu2.4_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system_8.0.4+dfsg-1ubuntu3.23.10.2_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-arm_4.2-3ubuntu6.28_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-arm_7.2+dfsg-5ubuntu2.4_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-arm_6.2+dfsg-2ubuntu6.16_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-arm_8.0.4+dfsg-1ubuntu3.23.10.2_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-ppc_4.2-3ubuntu6.28_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-ppc_7.2+dfsg-5ubuntu2.4_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-ppc_6.2+dfsg-2ubuntu6.16_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-ppc_8.0.4+dfsg-1ubuntu3.23.10.2_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-x86_4.2-3ubuntu6.28_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-x86_7.2+dfsg-5ubuntu2.4_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-x86_6.2+dfsg-2ubuntu6.16_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-x86_8.0.4+dfsg-1ubuntu3.23.10.2_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-xen_7.2+dfsg-5ubuntu2.4_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-xen_8.0.4+dfsg-1ubuntu3.23.10.2_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-mips_4.2-3ubuntu6.28_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-mips_7.2+dfsg-5ubuntu2.4_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-mips_6.2+dfsg-2ubuntu6.16_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-mips_8.0.4+dfsg-1ubuntu3.23.10.2_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-misc_4.2-3ubuntu6.28_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-misc_7.2+dfsg-5ubuntu2.4_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-misc_6.2+dfsg-2ubuntu6.16_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-misc_8.0.4+dfsg-1ubuntu3.23.10.2_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-s390x_4.2-3ubuntu6.28_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-s390x_7.2+dfsg-5ubuntu2.4_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-s390x_6.2+dfsg-2ubuntu6.16_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-s390x_8.0.4+dfsg-1ubuntu3.23.10.2_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-sparc_4.2-3ubuntu6.28_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-sparc_7.2+dfsg-5ubuntu2.4_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-sparc_6.2+dfsg-2ubuntu6.16_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-sparc_8.0.4+dfsg-1ubuntu3.23.10.2_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-x86-xen_4.2-3ubuntu6.28_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-x86-xen_7.2+dfsg-5ubuntu2.4_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-x86-xen_6.2+dfsg-2ubuntu6.16_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-x86-xen_8.0.4+dfsg-1ubuntu3.23.10.2_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-x86-microvm_4.2-3ubuntu6.28_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-6567-1) qemu-system-x86-microvm_6.2+dfsg-2ubuntu6.16_amd64.deb | Linux |
| Qemu-guest-agent update (ELSA-2022-7967) qemu-guest-agent-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-img update (ELSA-2022-7967) qemu-img-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm update (ELSA-2022-7967) qemu-kvm-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm-audio-pa update (ELSA-2022-7967) qemu-kvm-audio-pa-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm-block-curl update (ELSA-2022-7967) qemu-kvm-block-curl-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm-block-rbd update (ELSA-2022-7967) qemu-kvm-block-rbd-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm-common update (ELSA-2022-7967) qemu-kvm-common-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm-core update (ELSA-2022-7967) qemu-kvm-core-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm-device-display-virtio-gpu update (ELSA-2022-7967) qemu-kvm-device-display-virtio-gpu-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm-device-display-virtio-gpu-gl update (ELSA-2022-7967) qemu-kvm-device-display-virtio-gpu-gl-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm-device-display-virtio-gpu-pci update (ELSA-2022-7967) qemu-kvm-device-display-virtio-gpu-pci-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm-device-display-virtio-gpu-pci-gl update (ELSA-2022-7967) qemu-kvm-device-display-virtio-gpu-pci-gl-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm-device-display-virtio-vga update (ELSA-2022-7967) qemu-kvm-device-display-virtio-vga-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm-device-display-virtio-vga-gl update (ELSA-2022-7967) qemu-kvm-device-display-virtio-vga-gl-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm-device-usb-host update (ELSA-2022-7967) qemu-kvm-device-usb-host-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm-device-usb-redirect update (ELSA-2022-7967) qemu-kvm-device-usb-redirect-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm-docs update (ELSA-2022-7967) qemu-kvm-docs-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm-tools update (ELSA-2022-7967) qemu-kvm-tools-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm-ui-egl-headless update (ELSA-2022-7967) qemu-kvm-ui-egl-headless-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-kvm-ui-opengl update (ELSA-2022-7967) qemu-kvm-ui-opengl-7.0.0-13.el9.x86_64.rpm | Linux |
| Qemu-pr-helper update (ELSA-2022-7967) qemu-pr-helper-7.0.0-13.el9.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234