CVE-2021-3582 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Qemu

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer8 documents7 sources

Severity

6.5MEDIUMNVD

OSV2.3

EPSS

0.2%

top 62.97%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Qemu Debian Qemu Debian Linux

Timeline

PublishedMar 25

Latest updateMar 26

Description

A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. The issue occurs while handling a "PVRDMA_CMD_CREATE_MR" command due to improper memory remapping (mremap). This flaw allows a malicious guest to crash the QEMU process on the host. The highest threat from this vulnerability is to system availability.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:HExploitability: 2.0 | Impact: 4.0

Affected Packages5 packages

▶NVDqemu/qemu< 2.17.2

▶debiandebian/qemu< qemu 1:5.2+dfsg-11 (bookworm)

▶Debianqemu/qemu< 1:5.2+dfsg-11+3

▶Ubuntuqemu/qemu< 1:2.11+dfsg-1ubuntu7.37+1

▶CVEListV5qemu/qemuqemu 2.17.2

Also affects: Debian Linux 10.0

🔴Vulnerability Details

GHSA

GHSA-x7v7-hc56-547j: A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device↗2022-03-26

▶

OSV

CVE-2021-3582: A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device↗2022-03-25

▶

OSV

qemu vulnerabilities↗2021-07-15

▶

📋Vendor Advisories

Ubuntu

QEMU vulnerabilities↗2021-07-15

▶

Red Hat

QEMU: pvrdma: unproperly mremap in pvrdma_map_to_pdir()↗2021-06-16

▶

Debian

CVE-2021-3582: qemu - A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device....↗2021

▶

Cisco

Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Interface Cross-Site Scripting Vulnerabilities↗

▶