Published: 14/08/2023 Updated: 11/12/2023

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 0

QEMU up to and including 8.0.4 accesses a NULL pointer in nvme_directive_receive in hw/nvme/ctrl.c because there is no check for whether an endurance group is configured before checking whether Flexible Data Placement is enabled.

Vulnerable Product	Search on Vulmon	Subscribe to Product
qemu qemu

Debian Bug report logs - #1050140 qemu: CVE-2023-40360 Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 20 Aug 2023 19:21:04 UTC Severity: important Tags: security, upstream Found in versions qemu ...

Debian Bug report logs - #1050142 qemu: CVE-2023-4135 Package: src:qemu; Maintainer for src:qemu is Debian QEMU Team <pkg-qemu-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 20 Aug 2023 19:27:02 UTC Severity: important Tags: security, upstream Found in versions qemu/ ...

DescriptionThe MITRE CVE dictionary describes this issue as: QEMU through 804 accesses a NULL pointer in nvme_directive_receive in hw/nvme/ctrlc because there is no check for whether an endurance group is configured before checking whether Flexible Data Placement is enabled ...

CWE-476 https://gitlab.com/birkelund/qemu/-/commit/6c8f8456cb0b239812dee5211881426496da7b98 https://gitlab.com/qemu-project/qemu/-/issues/1815 https://www.qemu.org/docs/master/system/security.html https://security.netapp.com/advisory/ntap-20230915-0004/https://nvd.nist.gov https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1050140 https://access.redhat.com/security/cve/cve-2023-40360

CVE-2023-40360

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect