Heap Overflow Vulnerability in QEMU's virtio-net Device

CVE-2024-6505

6.8MEDIUM

Key Information

Vendor: Red Hat
Status: Red Hat Enterprise Linux 6; Red Hat Enterprise Linux 7; Red Hat Enterprise Linux 8; Red Hat Enterprise Linux 8 Advanced Virtualization
Vendor: CVE Published:; 5 July 2024

Summary

A flaw was found in the virtio-net device in QEMU. When enabling the RSS feature on the virtio-net network card, the indirections_table data within RSS becomes controllable. Setting excessively large values may cause an index out-of-bounds issue, potentially resulting in heap overflow access. This flaw allows a privileged user in the guest to crash the QEMU process on the host.

CVSS V3.1

Score:

6.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Risk change from: 6 to: 6.8 - (MEDIUM)
Sep 19, 2024
Risk change from: 6.8 to: 6 - (MEDIUM)
Aug 4, 2024
Risk change from: null to: 6 - (MEDIUM)
Jul 5, 2024
Vulnerability published.
Jul 5, 2024
Vulnerability Reserved.
Jul 4, 2024
Reported to Red Hat.
Jul 4, 2024

Collectors

NVD DatabaseMitre Database