Vm-Memory Project Vm-Memory vulnerabilities

CVE-2023-41051 [MEDIUM] CWE-125 CVE-2023-41051: In a typical Virtual Machine Monitor (VMM) there are several components, such as boot loader, virtua In a typical Virtual Machine Monitor (VMM) there are several components, such as boot loader, virtual device drivers, virtio backend drivers and vhost drivers, that need to access the VM physical memory. The vm-memory rust crate provides a set of traits to decouple VM memory consumers from VM memory providers. An issue was discovered in the default

CVE-2020-13759 [HIGH] CWE-362 CVE-2020-13759: rust-vmm vm-memory before 0.1.1 and 0.2.x before 0.2.1 allows attackers to cause a denial of service rust-vmm vm-memory before 0.1.1 and 0.2.x before 0.2.1 allows attackers to cause a denial of service (loss of IP networking) because read_obj and write_obj do not properly access memory. This affects aarch64 (with musl or glibc) and x86_64 (with musl).