CVE-2021-3700

Name
CVE-2021-3700
Description
A use-after-free vulnerability was found in usbredir in versions prior to 0.11.0 in the usbredirparser_serialize() in usbredirparser/usbredirparser.c. This issue occurs when serializing large amounts of buffered write data in the case of a slow or blocked destination.
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=1992830
Patch https://gitlab.freedesktop.org/spice/usbredir/-/commit/03c519ff5831ba
MLIST https://lists.debian.org/debian-lts-announce/2022/03/msg00030.html

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:spice-space:usbredir:*:*:*:*:*:*:*:* usbredir >= None < 0.11.0

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
usbredir 3.15-community 0.8.0-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
usbredir 3.12-main 0.8.0-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
usbredir 3.16-community 0.12.0-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
usbredir 3.17-community 0.12.0-r0 Natanael Copa <ncopa@alpinelinux.org> fixed