Vulnerability CVE-2023-6693: Information

Description

A stack based buffer overflow was found in the virtio-net device of QEMU. This issue occurs when flushing TX in the virtio_net_flush_tx function if guest features VIRTIO_NET_F_HASH_REPORT, VIRTIO_F_VERSION_1 and VIRTIO_NET_F_MRG_RXBUF are enabled. This could allow a malicious user to overwrite local variables allocated on the stack. Specifically, the `out_sg` variable could be used to read a part of process memory and send it to the wire, causing an information leak.

Severity: MEDIUM (5.3) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

URL: https://nvd.nist.gov/vuln/detail/CVE-2023-6693
Published: Jan. 2, 2024
Modified: March 8, 2024
Error type identifier: CWE-787

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
qemusisyphus8.2.0-alt18.2.3-alt1ALT-PU-2024-1248-2337487Fixed
qemusisyphus_loongarch648.2.0-alt0.0.port8.2.3-alt1ALT-PU-2024-1781-1-Fixed
qemup108.2.2-alt0.p108.2.2-alt0.p10.1ALT-PU-2024-6235-3344683Fixed
qemuc10f18.2.2-alt0.p10.18.2.2-alt0.p10.1ALT-PU-2024-7201-3345913Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://access.redhat.com/security/cve/CVE-2023-6693
  • Third Party Advisory
RHBZ#2254580
  • Issue Tracking
  • Patch
https://security.netapp.com/advisory/ntap-20240208-0004/
  • Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OYGUN5HVOXESW7MSNM44E4AE2VNXQB6Y/
  • Mailing List
  • Third Party Advisory

    1. Configuration 1

      cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*
      End excliding
      8.2.1

      Configuration 2

      cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:advanced_virtualization:*:*:*
      cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:-:*:*:*
      cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*

      Configuration 3

      cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.1
Back to top