Debian CVE-2022-26353: qemu: memory leakage
Bug #1994115 reported by
Yue Tao
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
Medium
|
Yue Tao |
Bug Description
CVE-2022-26353: [https:/
A flaw was found in the virtio-net device of QEMU. This flaw was inadvertently introduced with the fix for CVE-2021-3748, which forgot to unmap the cached virtqueue elements on error, leading to memory leakage and other unexpected results. Affected QEMU version: 6.2.0.
Score:
cve_id status cvss3Score av ac pr ui ai
CVE-2022-26353 fixed 7.5 N L N N H
References:
https:/
Found during May 2022 CVE scan using vulscan
CVE References
To post a comment you must log in.
screening: stx.8.0 / medium - CVE meets the stx fix criteria