CVE-2022-1050

Published: Mar 29, 2022

Modified: Aug 2, 2024

PUBLISHED

Description

A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to execute HW commands when shared buffers are not yet allocated, potentially leading to a use-after-free condition.

Vendor	Product	Versions
n/a	QEMU	affected `qemu 2.20.1`

Weaknesses (CWE)

CWE-416

References

https://bugzilla.redhat.com/show_bug.cgi?id=2069625

[debian-lts-announce] 20230314 [SECURITY] [DLA 3362-1] qemu security update

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-1050

Description

Affected Products

Weaknesses (CWE)

References