Lucene search
PRIOn knowledge basePRION:CVE-2022-4144HistoryNov 29, 2022 - 6:15 p.m.
Race condition
2022-11-2918:15:00
PRIOn knowledge base
www.prio-n.com
7
qemu
qxl display
out-of-bounds read
An out-of-bounds read flaw was found in the QXL display device emulation in QEMU. The qxl_phys2virt() function does not check the size of the structure pointed to by the guest physical address, potentially reading past the end of the bar space into adjacent pages. A malicious guest user could use this flaw to crash the QEMU process on the host causing a denial of service condition.
| CPE | Name | Operator | Version |
|---|---|---|---|
| extra_packages_for_enterprise_linux | eq | 8.0 | |
| fedora | eq | 37 | |
| qemu | le | 7.1.0 | |
| enterprise_linux | eq | 8.0 |
References
bugzilla.redhat.com/show_bug.cgi?id=2148506
lists.fedoraproject.org/archives/list/[email protected]/message/GTVPHLLXJ65BUMFBUUZ35F3J632SLFRK/
lists.fedoraproject.org/archives/list/[email protected]/message/I7J5IRXJYLELW7D43A75LOWRUE5EU54O/
lists.nongnu.org/archive/html/qemu-devel/2022-11/msg04143.html
security.netapp.com/advisory/ntap-20230127-0012/
Related
nessus
nessus
RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2023:0432)
2023-01-24 00:00:00
EulerOS 2.0 SP10 : kata-containers (EulerOS-SA-2023-1564)
2023-03-19 00:00:00
EulerOS 2.0 SP10 : kata-containers (EulerOS-SA-2023-1539)
2023-03-19 00:00:00
nvd
nvd
CVE-2022-4144
2022-11-29 18:15:10
osv
osv
CVE-2022-4144
2022-11-29 18:15:10
Moderate: virt:rhel and virt-devel:rhel security and bug fix update
2023-01-12 00:00:00
Moderate: virt:rhel and virt-devel:rhel security and bug fix update
2023-01-12 08:25:29
cbl_mariner
cbl_mariner
CVE-2022-4144 affecting package qemu for versions less than 6.2.0-18
2024-03-19 17:21:46
CVE-2022-4144 affecting package qemu-kvm 4.2.0-48
2024-07-03 03:08:33
CVE-2022-4144 affecting package qemu for versions less than 6.2.0-12
2023-01-03 20:57:57
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:0877-1)
2023-03-28 00:00:00
Huawei EulerOS: Security Advisory for kata-containers (EulerOS-SA-2023-1539)
2023-03-20 00:00:00
Huawei EulerOS: Security Advisory for kata-containers (EulerOS-SA-2023-1564)
2023-03-20 00:00:00
oraclelinux
oraclelinux
virt:ol and virt-devel:rhel security and bug fix update
2023-01-14 00:00:00
qemu security update
2023-06-01 00:00:00
virt:kvm_utils security update
2023-05-15 00:00:00
veracode
veracode
Out-of-bounds Read
2023-02-15 00:46:15
redhatcve
redhatcve
CVE-2022-4144
2022-11-25 17:26:01
alpinelinux
alpinelinux
CVE-2022-4144
2022-11-29 18:15:00
redhat
redhat
cve
cve
CVE-2022-4144
2022-11-29 18:15:10
almalinux
almalinux
Moderate: virt:rhel and virt-devel:rhel security and bug fix update
2023-01-12 00:00:00
rocky
rocky
virt:rhel and virt-devel:rhel security and bug fix update
2023-01-12 08:25:29
ubuntucve
ubuntucve
CVE-2022-4144
2022-11-29 00:00:00
debiancve
debiancve
CVE-2022-4144
2022-11-29 18:15:10
cvelist
cvelist
CVE-2022-4144
2022-11-29 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: qemu-6.2.0-17.fc36
2023-01-19 13:15:08
[SECURITY] Fedora 37 Update: qemu-7.0.0-12.fc37
2022-12-14 02:01:51
ubuntu
ubuntu
QEMU vulnerabilities
2023-06-19 00:00:00
redos
redos
ROS-20240329-15
2024-03-29 00:00:00
amazon
amazon
Medium: qemu
2023-05-25 17:41:00