Lucene search

K
redhatcveRedhat.comRH:CVE-2021-4145
HistoryDec 21, 2021 - 3:58 p.m.

CVE-2021-4145

2021-12-2115:58:41
redhat.com
access.redhat.com
13

0.0004 Low

EPSS

Percentile

5.2%

A NULL pointer dereference issue was found in the block mirror layer of QEMU. The self pointer is dereferenced in mirror_wait_on_conflicts() without ensuring that it’s not NULL. A malicious unprivileged user within the guest could use this flaw to crash the QEMU process on the host when writing data reaches the threshold of mirroring node.

Mitigation

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.