PT-2021-6089 · Qemu+10 · Qemu+10

Alexander Bulekov

Published

2021-08-27

Updated

2024-06-15

CVE-2021-3748

CVSS v3.1

7.5

High

Vector

AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions QEMU (affected versions not specified)

Description A use-after-free issue was found in the virtio-net device of QEMU. This could occur when the descriptor's address belongs to the non direct access region, due to num buffers being set after the virtqueue element has been unmapped. A malicious guest could use this flaw to crash QEMU, resulting in a denial of service condition, or potentially execute code on the host with the privileges of the QEMU process.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2022:1759

ALT-PU-2021-3286

ALT-PU-2021-3363

ALT-PU-2021-3585

ALT-PU-2022-2062

ALT-PU-2022-3390

AZL-9121

BDU:2022-00753

CESA-2022_1759

CVE-2021-3748

DLA-2970-1

DLA-3099-1

DSA-4980-1

OESA-2021-1371

OPENSUSE-SU-2021:1461-1

OPENSUSE-SU-2021:3604-1

OPENSUSE-SU-2021:3605-1

OPENSUSE-SU-2021:3614-1

OPENSUSE-SU-2021_1461-1

OPENSUSE-SU-2021_3604-1

OPENSUSE-SU-2021_3605-1

OPENSUSE-SU-2021_3614-1

OPENSUSE-SU-2024:11597-1

RHSA-2021:4112

RHSA-2021:5036

RHSA-2022:1759

RHSA-2022_1759

RLSA-2022:1759

SUSE-SU-2021:3519-1

SUSE-SU-2021:3604-1

SUSE-SU-2021:3605-1

SUSE-SU-2021:3613-1

SUSE-SU-2021:3614-1

SUSE-SU-2021:3635-1

SUSE-SU-2021:3653-1

USN-5307-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Linuxmint

Qemu

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

PT-2021-6089 · Qemu+10 · Qemu+10

CVE-2021-3748

Weakness Enumeration

Related Identifiers

Affected Products

References · 253