Bugzilla – Bug 1197653
VUL-0: CVE-2022-1050: qemu,kvm: pvrdma: use-after-free issue in pvrdma_exec_cmd()
Last modified: 2023-01-15 15:12:51 UTC
rh#2069625 Guest driver might execute HW commands when shared buffers are not yet allocated, potentially leading to a use-after-free condition. Upstream patch: https://lists.nongnu.org/archive/html/qemu-devel/2022-03/msg05197.html References: https://bugzilla.redhat.com/show_bug.cgi?id=2069625 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-1050
pvrdma support seems to be only present in the following codestreams: - SUSE:SLE-12-SP5:Update/qemu - SUSE:SLE-15-SP1:Update/qemu - SUSE:SLE-15-SP2:Update/qemu - SUSE:SLE-15-SP3:Update/qemu - SUSE:SLE-15-SP4:Update/qemu
(In reply to Thomas Leroy from comment #0) > rh#2069625 > > Guest driver might execute HW commands when shared buffers are not yet > allocated, potentially leading to a use-after-free condition. > > Upstream patch: > https://lists.nongnu.org/archive/html/qemu-devel/2022-03/msg05197.html > Indeed. But the patch is not upstream yet, AFAICS.
(pinged upstream, but looks good to me)
Hi, is there any update here? Thanks!