CVE-2024-6505 — Out-of-bounds Read in Redhat Enterprise Linux

CWE-125 — Out-of-bounds Read8 documents8 sources

Severity

6.8MEDIUMNVD

EPSS

0.1%

top 75.41%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Qemu Redhat Enterprise Linux

Timeline

PublishedJul 5

Latest updateSep 11

Description

A flaw was found in the virtio-net device in QEMU. When enabling the RSS feature on the virtio-net network card, the indirections_table data within RSS becomes controllable. Setting excessively large values may cause an index out-of-bounds issue, potentially resulting in heap overflow access. This flaw allows a privileged user in the guest to crash the QEMU process on the host.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:HExploitability: 2.3 | Impact: 4.0

Affected Packages1 packages

▶Debianqemu/qemu< 1:7.2+dfsg-7+deb12u8+2

Also affects: Enterprise Linux 8.0, 9.0

🔴Vulnerability Details

GHSA

GHSA-3qx7-ff8p-6j2r: A flaw was found in the virtio-net device in QEMU↗2024-07-05

▶

CVEList

Qemu-kvm: virtio-net: queue index out-of-bounds access in software rss↗2024-07-05

▶

OSV

CVE-2024-6505: A flaw was found in the virtio-net device in QEMU↗2024-07-05

▶

📋Vendor Advisories

Ubuntu

QEMU vulnerabilities↗2025-09-11

▶

Microsoft

Qemu-kvm: virtio-net: queue index out-of-bounds access in software rss↗2024-07-09

▶

Red Hat

qemu-kvm: virtio-net: queue index out-of-bounds access in software RSS↗2024-07-04

▶

Debian

CVE-2024-6505: qemu - A flaw was found in the virtio-net device in QEMU. When enabling the RSS feature...↗2024

▶