Vulnerability CVE-2023-1544: Information
Description
A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used as a ring of descriptors for CQ and async events, potentially leading to an out-of-bounds read and crash of QEMU.
Severity: MEDIUM (6.3) Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
qemu | sisyphus | 8.0.0-alt1 | 8.2.3-alt1 | ALT-PU-2023-1685-1 | 319375 | Fixed |
qemu | sisyphus_riscv64 | 8.0.0-alt0.3.rv64 | 8.0.3-alt0.1.rv64 | ALT-PU-2023-3777-1 | - | Fixed |
qemu | sisyphus_loongarch64 | 8.1.3-alt0.port | 8.2.3-alt1 | ALT-PU-2023-8102-1 | - | Fixed |
qemu | p10 | 8.0.0-alt1.p10 | 8.2.2-alt0.p10.1 | ALT-PU-2023-1830-1 | 320227 | Fixed |
qemu | c10f1 | 8.0.0-alt1.p10 | 8.2.2-alt0.p10.1 | ALT-PU-2023-1869-1 | 321192 | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
---|---|
https://lists.nongnu.org/archive/html/qemu-devel/2023-03/msg00206.html |
|
https://bugzilla.redhat.com/show_bug.cgi?id=2180364 |
|
https://security.netapp.com/advisory/ntap-20230511-0005/ | |
https://access.redhat.com/security/cve/CVE-2023-1544 |