Vulnerability CVE-2022-4172: Information

Description

An integer overflow and buffer overflow issues were found in the ACPI Error Record Serialization Table (ERST) device of QEMU in the read_erst_record() and write_erst_record() functions. Both issues may allow the guest to overrun the host buffer allocated for the ERST memory device. A malicious guest could use these flaws to crash the QEMU process on the host.

Severity: MEDIUM (6.5) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2022-4172
Published: Nov. 29, 2022
Modified: Nov. 7, 2023
Error type identifier: CWE-120

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
pve-qemusisyphus7.2.0-alt18.1.5-alt1ALT-PU-2023-1507-1316507Fixed
pve-qemup107.2.0-alt17.2.0-alt4ALT-PU-2023-1795-1318466Fixed
pve-qemuc10f17.2.0-alt17.2.0-alt3ALT-PU-2023-1795-1318466Fixed
pve-qemup117.2.0-alt18.1.5-alt1ALT-PU-2023-1507-1316507Fixed
qemusisyphus7.1.0-alt18.2.3-alt1ALT-PU-2022-3083-1310014Fixed
qemusisyphus_riscv647.1.0-alt18.0.3-alt0.1.rv64ALT-PU-2022-7149-1-Fixed
qemup117.1.0-alt18.2.3-alt1ALT-PU-2022-3083-1310014Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://gitlab.com/qemu-project/qemu/-/commit/defb7098
  • Patch
  • Third Party Advisory
https://gitlab.com/qemu-project/qemu/-/issues/1268
  • Exploit
  • Issue Tracking
  • Third Party Advisory
https://security.netapp.com/advisory/ntap-20230127-0013/
  • Third Party Advisory
https://lore.kernel.org/qemu-devel/20221024154233.1043347-1-lk%40c--e.de/
    FEDORA-2022-22b1f8dae2

        1. Configuration 1

          cpe:2.3:a:qemu:qemu:7.0.0:-:*:*:*:*:*:*

          Configuration 2

          cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*
      VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
      Version: v24.5.3
      Back to top