Lucene search
PRIOn knowledge basePRION:CVE-2021-3392HistoryMar 23, 2021 - 8:15 p.m.
Design/Logic Flaw
2021-03-2320:15:00
PRIOn knowledge base
www.prio-n.com
6
A use-after-free flaw was found in the MegaRAID emulator of QEMU. This issue occurs while processing SCSI I/O requests in the case of an error mptsas_free_request() that does not dequeue the request object ‘req’ from a pending requests queue. This flaw allows a privileged guest user to crash the QEMU process on the host, resulting in a denial of service. Versions between 2.10.0 and 5.2.0 are potentially affected.
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian_linux | eq | 9.0 | |
| debian_linux | eq | 10.0 | |
| fedora | eq | 33 | |
| qemu | ge | 2.10.0 | |
| qemu | le | 5.2.0 |
Related
cbl_mariner
cbl_mariner
CVE-2021-3392 affecting package qemu-kvm 4.2.0-48
2021-05-06 23:57:26
nvd
nvd
CVE-2021-3392
2021-03-23 20:15:13
debiancve
debiancve
CVE-2021-3392
2021-03-23 20:15:13
redhatcve
redhatcve
CVE-2021-3392
2021-02-02 13:29:13
cvelist
cvelist
CVE-2021-3392
2021-03-23 19:07:17
osv
osv
CVE-2021-3392
2021-03-23 20:15:13
qemu - security update
2021-04-10 00:00:00
qemu vulnerabilities
2021-07-15 17:53:50
veracode
veracode
Denial Of Service (DoS)
2021-04-11 14:09:45
alpinelinux
alpinelinux
CVE-2021-3392
2021-03-23 20:15:13
ubuntucve
ubuntucve
CVE-2021-3392
2021-03-23 00:00:00
cve
cve
CVE-2021-3392
2021-03-23 20:15:13
amazon
amazon
Medium: qemu
2023-05-25 17:41:00
nessus
nessus
Amazon Linux 2 : qemu (ALAS-2023-2061)
2023-06-05 00:00:00
Oracle Linux 7 : qemu (ELSA-2021-9425)
2021-08-17 00:00:00
Debian DLA-2623-1 : qemu security update
2021-04-12 00:00:00
debian
debian
[SECURITY] [DLA 2623-1] qemu security update
2021-04-10 21:21:02
[SECURITY] [DLA 3099-1] qemu security update
2022-09-05 03:28:05
oraclelinux
oraclelinux
qemu security update
2021-08-17 00:00:00
virt:kvm_utils security update
2021-12-01 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2021-2046)
2021-07-01 00:00:00
Debian: Security Advisory (DLA-2623-1)
2021-04-11 00:00:00
Ubuntu: Security Advisory (USN-5010-1)
2021-07-16 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2021-07-15 00:00:00