CVE-2022-4172

An integer overflow and buffer overflow issues were found in the ACPI Error Record Serialization Table (ERST) device of QEMU in the read_erst_record() and write_erst_record() functions. Both issues may allow the guest to overrun the host buffer allocated for the ERST memory device. A malicious guest could use these flaws to crash the QEMU process on the host.

Published: Nov 29, 2022
Updated: Apr 14, 2023
CVE: CVE-2022-4172
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

CWEs:

CWE-120
CWE-190

Affected Software
References

Software	From	Fixed in
qemu / qemu	7.0.0	7.0.0.x
fedoraproject / fedora	37	37.x

https://gitlab.com/qemu-project/qemu/-/commit/defb7098
https://gitlab.com/qemu-project/qemu/-/issues/1268
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I7J5IRXJYLELW7D43A75LOWRUE5EU54O/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I7J5IRXJYLELW7D43A75LOWRUE5EU54O/
https://lore.kernel.org/qemu-devel/20221024154233.1043347-1-lk@c--e.de/
https://lore.kernel.org/qemu-devel/20221024154233.1043347-1-lk%40c--e.de/
https://security.netapp.com/advisory/ntap-20230127-0013/

Vulnerability Database

CVE-2022-4172