Lucene search
RedhatCVELIST:CVE-2021-4207HistoryApr 29, 2022 - 4:07 p.m.
CVE-2021-4207
2022-04-2916:07:33
CWE-362
redhat
www.cve.org
3
qxl display device
qemu
heap-based buffer overflow
A flaw was found in the QXL display device emulation in QEMU. A double fetch of guest controlled values cursor->header.width and cursor->header.height can lead to the allocation of a small cursor object followed by a subsequent heap-based buffer overflow. A malicious privileged guest user could use this flaw to crash the QEMU process on the host or potentially execute arbitrary code within the context of the QEMU process.
CNA Affected
[
{
"product": "QEMU",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "qemu-kvm 7.0.0"
}
]
}
]Related
veracode
veracode
Denial Of Service (DoS)
2022-04-27 11:56:54
cve
cve
CVE-2021-4207
2022-04-29 17:15:20
osv
osv
CVE-2021-4207
2022-04-29 17:15:20
redhatcve
redhatcve
CVE-2021-4207
2022-04-01 10:34:12
cbl_mariner
cbl_mariner
CVE-2021-4207 affecting package qemu for versions less than 6.2.0-18
2024-03-19 17:21:46
CVE-2021-4207 affecting package qemu-kvm 4.2.0-46
2023-01-12 20:55:00
CVE-2021-4207 affecting package qemu for versions less than 6.2.0-13
2023-01-17 16:47:04
nvd
nvd
CVE-2021-4207
2022-04-29 17:15:20
cnvd
cnvd
QEMU Buffer Overflow Vulnerability (CNVD-2023-80119)
2022-05-24 00:00:00
alpinelinux
alpinelinux
CVE-2021-4207
2022-04-29 17:15:00
debiancve
debiancve
CVE-2021-4207
2022-04-29 17:15:20
ubuntucve
ubuntucve
CVE-2021-4207
2022-04-29 00:00:00
nessus
nessus
CBL Mariner 2.0 Security Update: qemu / qemu-kvm (CVE-2021-4207)
2024-08-06 00:00:00
SUSE SLED15 / SLES15 Security Update : qemu (SUSE-SU-2022:2254-1)
2022-07-05 00:00:00
Oracle Linux 7 : qemu (ELSA-2022-9669)
2022-08-01 00:00:00
prion
prion
Heap overflow
2022-04-29 17:15:00
suse
suse
Security update for qemu (important)
2022-07-04 00:00:00
Security update for qemu (important)
2022-07-04 00:00:00
Security update for qemu (important)
2022-10-17 00:00:00
openvas
openvas
openSUSE: Security Advisory for qemu (SUSE-SU-2022:2254-1)
2022-07-05 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:3015-1)
2023-07-31 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:2254-1)
2022-07-05 00:00:00
oraclelinux
oraclelinux
qemu security update
2022-08-01 00:00:00
virt:ol and virt-devel:ol security, bug fix, and enhancement update
2022-08-05 00:00:00
qemu-kvm security update
2022-10-10 00:00:00
redhat
redhat
rocky
rocky
virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
2022-08-02 07:04:52
almalinux
almalinux
debian
debian
[SECURITY] [DSA 5133-1] qemu security update
2022-05-09 20:44:24
[SECURITY] [DLA 3099-1] qemu security update
2022-09-05 03:28:05
amazon
amazon
Medium: qemu
2023-05-25 17:41:00
ubuntu
ubuntu
QEMU vulnerabilities
2022-06-21 00:00:00
gentoo
gentoo
QEMU: Multiple Vulnerabilities
2022-08-14 00:00:00