CVE-2021-4145

Name
CVE-2021-4145
Description
A NULL pointer dereference issue was found in the block mirror layer of QEMU in versions prior to 6.2.0. The `self` pointer is dereferenced in mirror_wait_on_conflicts() without ensuring that it's not NULL. A malicious unprivileged user within the guest could use this flaw to crash the QEMU process on the host when writing data reaches the threshold of mirroring node.
NVD Severity
medium
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://bugzilla.redhat.com/show_bug.cgi?id=2034602
MISC https://gitlab.com/qemu-project/qemu/-/commit/66fed30c9cd11854fc878a4eceb507e915d7c9cd
Third Party Advisory https://security.netapp.com/advisory/ntap-20220311-0004/

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:* qemu >= None < 6.2.0
cpe:2.3:a:qemu:qemu:6.1.0:-:*:*:*:*:*:* qemu == None == 6.1.0

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
qemu 3.15-community 6.1.1-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable