摘要:
An integer overflow was found in the QEMU implementation of VMWare s paravirtual RDMA device in versions prior to 6.1.0. The issue occurs while handling a PVRDMA_REG_DSRHIGH write from the guest due to improper input validation. This flaw allows a privileged guest user to make QEMU allocate a large amount of memory, resulting in a denial of service. The highest threat from this vulnerability is to system availability.
安全等级: Low
公告ID: KylinSec-SA-2022-1364
发布日期: 2022年4月26日
关联CVE: CVE-2021-3607
An integer overflow was found in the QEMU implementation of VMWare s paravirtual RDMA device in versions prior to 6.1.0. The issue occurs while handling a PVRDMA_REG_DSRHIGH write from the guest due to improper input validation. This flaw allows a privileged guest user to make QEMU allocate a large amount of memory, resulting in a denial of service. The highest threat from this vulnerability is to system availability.
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|
