CVE-2023-3354

2023-07-1100:00:00

ubuntu.com

cve-2023-3354; qemu; vnc server; denial of service

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

21.2%

JSON

A flaw was found in the QEMU built-in VNC server. When a client connects to
the VNC server, QEMU checks whether the current number of connections
crosses a certain threshold and if so, cleans up the previous connection.
If the previous connection happens to be in the handshake phase and fails,
QEMU cleans up the connection again, resulting in a NULL pointer
dereference issue. This could allow a remote unauthenticated client to
cause a denial of service.

Bugs

<https://bugzilla.redhat.com/show_bug.cgi?id=2216478>

Notes

Author	Note
	Priority reason: Limited to a denial of service in the VNC server component.
mdeslaur	VNC denial of service

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchqemu< anyUNKNOWN
ubuntu20.04noarchqemu< 1:4.2-3ubuntu6.28UNKNOWN
ubuntu22.04noarchqemu< 1:6.2+dfsg-2ubuntu6.16UNKNOWN
ubuntu23.04noarchqemu< 1:7.2+dfsg-5ubuntu2.4UNKNOWN
ubuntu14.04noarchqemu< anyUNKNOWN
ubuntu16.04noarchqemu< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	qemu	< any	UNKNOWN
ubuntu	20.04	noarch	qemu	< 1:4.2-3ubuntu6.28	UNKNOWN
ubuntu	22.04	noarch	qemu	< 1:6.2+dfsg-2ubuntu6.16	UNKNOWN
ubuntu	23.04	noarch	qemu	< 1:7.2+dfsg-5ubuntu2.4	UNKNOWN
ubuntu	14.04	noarch	qemu	< any	UNKNOWN
ubuntu	16.04	noarch	qemu	< any	UNKNOWN