Уязвимость CVE-2021-3527: Информация

Описание

A flaw was found in the USB redirector device (usb-redir) of QEMU. Small USB packets are combined into a single, large transfer request, to reduce the overhead and improve performance. The combined size of the bulk transfer is used to dynamically allocate a variable length array (VLA) on the stack without proper validation. Since the total size is not bounded, a malicious guest could use this flaw to influence the array length and cause the QEMU process to perform an excessive allocation on the stack, resulting in a denial of service.

Важность: MEDIUM (5,5) Вектор: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2021-3527
Опубликовано: 27 мая 2021 г.
Изменено: 30 сентября 2022 г.
Идентификатор типа ошибки: CWE-770

Исправленные пакеты

Имя пакета
Ветка
Исправлено в версии
Версия в репозитории
Errata ID
№ Задания
Состояние
qemusisyphus6.1.0-alt18.2.4-alt1ALT-PU-2021-2713-1284381Исправлено
qemusisyphus_e2k7.2.0-alt3.E2K.37.2.0-alt3.E2K.4ALT-PU-2024-1953-1-Исправлено
qemusisyphus_loongarch648.2.0-alt0.0.port8.2.3-alt1ALT-PU-2024-1781-1-Исправлено
qemup106.1.0-alt28.2.2-alt0.p10.1ALT-PU-2021-3363-1289854Исправлено
qemup10_e2k7.2.0-alt3.E2K.07.2.0-alt3.E2K.3ALT-PU-2023-6766-1-Исправлено
qemuc10f18.2.2-alt0.p10.18.2.2-alt0.p10.1ALT-PU-2024-7201-3345913Исправлено
qemup116.1.0-alt18.2.3-alt1ALT-PU-2021-2713-1284381Исправлено

Ссылки на рекомендации, решения и инструменты

Ссылка
Ресурс
https://www.openwall.com/lists/oss-security/2021/05/05/5
  • Mailing List
  • Patch
  • Third Party Advisory
https://gitlab.com/qemu-project/qemu/-/commit/05a40b172e4d691371534828078be47e7fff524c
  • Patch
  • Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1955695
  • Issue Tracking
  • Patch
  • Third Party Advisory
https://gitlab.com/qemu-project/qemu/-/commit/7ec54f9eb62b5d177e30eb8b1cad795a5f8d8986
  • Patch
  • Third Party Advisory
https://security.netapp.com/advisory/ntap-20210708-0008/
  • Third Party Advisory
[debian-lts-announce] 20210902 [SECURITY] [DLA 2753-1] qemu security update
  • Mailing List
  • Third Party Advisory
GLSA-202208-27
  • Third Party Advisory
[debian-lts-announce] 20220905 [SECURITY] [DLA 3099-1] qemu security update
  • Mailing List
  • Third Party Advisory

    1. Конфигурация 1

      cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*
      End including
      6.0.0

      Конфигурация 2

      cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:advanced_virtualization:*:*:*
      cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:-:*:*:*

      Конфигурация 3

      cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
      cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Версия: v24.5.3
Наверх