Lucene search

CVE-2023-1544

🗓️ 23 Mar 2023 20:14:15Reported by fedoraType

Flaw in QEMU implementation of VMWare's paravirtual RDMA device allows crafted guest driver to cause out-of-bounds read and crash

Reporter	Title	Published	Views	Family All 41
Oracle linux	virt:kvm_utils2 security update	2 Jun 202300:00	–	oraclelinux
Oracle linux	qemu-kvm security update	16 May 202300:00	–	oraclelinux
Oracle linux	virt:kvm_utils1 security update	13 Jun 202400:00	–	oraclelinux
Oracle linux	virt:kvm_utils1 security update	23 Oct 202400:00	–	oraclelinux
Oracle linux	virt:kvm_utils2 security update	2 Sep 202400:00	–	oraclelinux
Cvelist	CVE-2023-1544 Qemu: pvrdma: out-of-bounds read in pvrdma_ring_next_elem_read()	23 Mar 202300:00	–	cvelist
Vulnrichment	CVE-2023-1544 Qemu: pvrdma: out-of-bounds read in pvrdma_ring_next_elem_read()	23 Mar 202300:00	–	vulnrichment
CNVD	QEMU Denial of Service Vulnerability (CNVD-2023-62348)	27 Mar 202300:00	–	cnvd
RedhatCVE	CVE-2023-1544	21 Mar 202310:13	–	redhatcve
NVD	CVE-2023-1544	23 Mar 202320:15	–	nvd

Nvd

Node

qemu qemuRange≤7.2.0

Node

fedoraproject fedoraMatch37

[
  {
    "versions": [
      {
        "status": "unaffected",
        "version": "8.2.0-rc0",
        "lessThan": "*",
        "versionType": "semver"
      }
    ],
    "packageName": "qemu",
    "collectionURL": "https://gitlab.com/qemu-project/qemu",
    "defaultStatus": "affected"
  }
]

Source	Link
security	www.security.netapp.com/advisory/ntap-20230511-0005/
lists	www.lists.nongnu.org/archive/html/qemu-devel/2023-03/msg00206.html
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
access	www.access.redhat.com/security/cve/CVE-2023-1544

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

23 Mar 2023 20:15Current

5.9Medium risk

Vulners AI Score5.9

CVSS36 - 6.3

EPSS0.00046

SSVC