It exists that the QEMU vhost-user GPU device contained several security issues. An attacker inside the guest could use these issues to cause QEMU to crash, resulting in a denial of service, leak sensitive information, or possibly execute arbitrary code. This issue only affected Ubuntu 21.10. (CVE-2021-3544, CVE-2021-3545, CVE-2021-3546)
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
qemu qemu 5.2.0 |
||
debian debian linux 9.0 |
||
debian debian linux 10.0 |