Acrn Security Vulnerabilities and Issues — Acrn CVE List

Lucene search

LinuxAcrn

7 matches found

CVE•added 2021/07/02 10:15 p.m.•101 views

CVE-2021-36146

ACRN before 2.5 has a devicemodel/hw/pci/xhci.c NULL Pointer Dereference for a trb pointer.

7.5CVSS7.5AI score0.00275EPSS

CVE•added 2021/07/02 10:15 p.m.•97 views

CVE-2021-36147

An issue was discovered in ACRN before 2.5. It allows a devicemodel/hw/pci/virtio/virtio_net.c virtio_net_ping_rxq NULL pointer dereference for vq->used.

7.5CVSS7.5AI score0.00336EPSS

CVE•added 2021/07/02 10:15 p.m.•89 views

CVE-2021-36143

ACRN before 2.5 has a hw/pci/virtio/virtio.c vq_endchains NULL Pointer Dereference.

7.5CVSS7.5AI score0.00264EPSS

CVE•added 2021/07/02 10:15 p.m.•87 views

CVE-2021-36145

The Device Model in ACRN through 2.5 has a devicemodel/core/mem.c use-after-free for a freed rb_entry.

7.5CVSS7.5AI score0.00393EPSS

CVE•added 2021/07/02 10:15 p.m.•83 views

CVE-2021-36148

An issue was discovered in ACRN before 2.5. dmar_free_irte in hypervisor/arch/x86/vtd.c allows an irte_alloc_bitmap buffer overflow.

7.8CVSS7.7AI score0.00213EPSS

CVE•added 2021/07/02 10:15 p.m.•82 views

CVE-2021-36144

The polling timer handler in ACRN before 2.5 has a use-after-free for a freed virtio device, related to devicemodel/hw/pci/virtio/*.c.

7.5CVSS7.5AI score0.00393EPSS

CVE•added 2019/11/13 8:15 p.m.•46 views

CVE-2019-18844

The Device Model in ACRN before 2019w25.5-140000p relies on assert calls in devicemodel/hw/pci/core.c and devicemodel/include/pci_core.h (instead of other mechanisms for propagating error information or diagnostic information), which might allow attackers to cause a denial of service (assertion fai...

7.5CVSS7.3AI score0.00537EPSS