An off-by-one error was found in the SCSI device emulation in QEMU. It could occur while processing MODE SELECT commands in mode_sense_page() if the 'page' argument was set to MODE_PAGE_ALLS (0x3f). A malicious guest could use this flaw to potentially crash QEMU, resulting in a denial of service condition.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=2020588 | Issue Tracking Patch Vendor Advisory |
https://security.netapp.com/advisory/ntap-20220225-0007/ | Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2022/04/msg00002.html | Mailing List Third Party Advisory |
https://security.gentoo.org/glsa/202208-27 | Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2022/09/msg00008.html | Mailing List Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Information
Published : 2022-02-18 10:15
Updated : 2022-10-25 13:11
NVD link : CVE-2021-3930
Mitre link : CVE-2021-3930
JSON object : View
CWE
CWE-193
Off-by-one Error
Products Affected
redhat
- enterprise_linux_for_power_little_endian
- codeready_linux_builder_for_ibm_z_systems
- enterprise_linux
- openstack
- enterprise_linux_for_ibm_z_systems
- codeready_linux_builder
- codeready_linux_builder_for_power_little_endian
- enterprise_linux_advanced_virtualization_eus
qemu
- qemu
debian
- debian_linux