CVE-2021-4145NULL Pointer Dereference in Qemu

CWE-476NULL Pointer Dereference7 documents7 sources
Severity
6.5MEDIUMNVD
EPSS
0.1%
top 82.00%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
QemuRedhat Enterprise Linux
Timeline
PublishedJan 25
Latest updateJan 26

Description

A NULL pointer dereference issue was found in the block mirror layer of QEMU in versions prior to 6.2.0. The `self` pointer is dereferenced in mirror_wait_on_conflicts() without ensuring that it's not NULL. A malicious unprivileged user within the guest could use this flaw to crash the QEMU process on the host when writing data reaches the threshold of mirroring node.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:HExploitability: 2.0 | Impact: 4.0

Affected Packages3 packages

Debianqemu/qemu< 1:6.2+dfsg-1+2
CVEListV5qemu/qemuqemu-kvm 6.2.0
NVDqemu/qemu6.1.0

Also affects: Enterprise Linux 8.0

Patches

Patch: bugzilla.redhat.comPatch: gitlab.comPatch: bugzilla.redhat.com

🔴Vulnerability Details

3
GHSA
GHSA-j9qg-fc9x-6r3r: A NULL pointer dereference issue was found in the block mirror layer of QEMU in versions prior to 62022-01-26
OSV
CVE-2021-4145: A NULL pointer dereference issue was found in the block mirror layer of QEMU in versions prior to 62022-01-25
CVEList
CVE-2021-4145: A NULL pointer dereference issue was found in the block mirror layer of QEMU in versions prior to 62022-01-25

📋Vendor Advisories

3
Microsoft
A NULL pointer dereference issue was found in the block mirror layer of QEMU in versions prior to 6.2.0. The `self` pointer is dereferenced in mirror_wait_on_conflicts() without ensuring that it's not2022-01-11
Red Hat
QEMU: NULL pointer dereference in mirror_wait_on_conflicts() in block/mirror.c2021-12-10
Debian
CVE-2021-4145: qemu - A NULL pointer dereference issue was found in the block mirror layer of QEMU in ...2021
CVE-2021-4145 — NULL Pointer Dereference in Qemu | cvebase