The vulnerability of the nvme_directive_receive() function in the NVMe emulator virtual device of the QEMU hardware infrastructure, which allows a hacker to trigger a service failure.

The vulnerability of the nvmedirectivereceive function in the NVMe virtual device emulator for QEMU hardware infrastructure is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to trigger a service failure...

SUSE CVE-2023-40360

QEMU through 8.0.4 accesses a NULL pointer in nvmedirectivereceive in hw/nvme/ctrl.c because there is no check for whether an endurance group is configured before checking whether Flexible Data Placement is enabled...

CVE-2023-40360

QEMU through 8.0.4 accesses a NULL pointer in nvmedirectivereceive in hw/nvme/ctrl.c because there is no check for whether an endurance group is configured before checking whether Flexible Data Placement is enabled...

DEBIAN-CVE-2023-40360

QEMU through 8.0.4 accesses a NULL pointer in nvmedirectivereceive in hw/nvme/ctrl.c because there is no check for whether an endurance group is configured before checking whether Flexible Data Placement is enabled...

Null pointer dereference

QEMU through 8.0.4 accesses a NULL pointer in nvmedirectivereceive in hw/nvme/ctrl.c because there is no check for whether an endurance group is configured before checking whether Flexible Data Placement is enabled...