vulnerability

Ubuntu: (Multiple Advisories) (CVE-2021-3750): QEMU vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:N/C:P/I:P/A:P)	May 2, 2022	Dec 12, 2022	Jan 23, 2025

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:P/A:P)

Published

May 2, 2022

Added

Dec 12, 2022

Modified

Jan 23, 2025

Description

A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions (such as reset) while the device is still transferring packets. This can ultimately lead to a use-after-free issue. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code within the context of the QEMU process on the host. This flaw affects QEMU versions before 7.0.0.

Solution(s)

ubuntu-pro-upgrade-qemuubuntu-pro-upgrade-qemu-systemubuntu-pro-upgrade-qemu-system-aarch64ubuntu-pro-upgrade-qemu-system-armubuntu-pro-upgrade-qemu-system-mipsubuntu-pro-upgrade-qemu-system-miscubuntu-pro-upgrade-qemu-system-ppcubuntu-pro-upgrade-qemu-system-s390xubuntu-pro-upgrade-qemu-system-sparcubuntu-pro-upgrade-qemu-system-x86ubuntu-pro-upgrade-qemu-system-x86-microvmubuntu-pro-upgrade-qemu-system-x86-xen

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today