QwikSec

Security Database

CVE

CWE

Training

CVE-2021-20221

Published: May 13, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

An out-of-bounds heap buffer access issue was found in the ARM Generic Interrupt Controller emulator of QEMU up to and including qemu 4.2.0on aarch64 platform. The issue occurs because while writing an interrupt ID to the controller memory area, it is not masked to be 4 bits wide. It may lead to the said issue while updating controller state fields and their subsequent processing. A privileged guest user may use this flaw to crash the QEMU process on the host resulting in DoS scenario.

Vendor	Product	Versions
n/a	qemu	affected `up to, including qemu 4.2.0`

Weaknesses (CWE)

References

[oss-security] 20210205 CVE-2021-20221 QEMU: aarch64: GIC: out-of-bound heap buffer access via an interrupt ID field

mailing-list

x_refsource_MLIST

[debian-lts-announce] 20210218 [SECURITY] [DLA 2560-1] qemu security update

mailing-list

x_refsource_MLIST

https://bugzilla.redhat.com/show_bug.cgi?id=1924601

x_refsource_MISC

https://security.netapp.com/advisory/ntap-20210708-0005/

x_refsource_CONFIRM

[debian-lts-announce] 20220905 [SECURITY] [DLA 3099-1] qemu security update

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.