A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used as a ring of descriptors for CQ and async events, potentially leading to an out-of-bounds read and crash of QEMU.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: fedora

Published: 2023-03-23T00:00:00

Updated: 2024-08-02T05:49:11.767Z

Reserved: 2023-03-21T00:00:00

Link: CVE-2023-1544

cve-icon Vulnrichment

Updated: 2024-08-02T05:49:11.767Z

cve-icon NVD

Status : Modified

Published: 2023-03-23T20:15:14.497

Modified: 2024-11-21T07:39:24.730

Link: CVE-2023-1544

cve-icon Redhat

Severity : Low

Publid Date: 2023-02-27T00:00:00Z

Links: CVE-2023-1544 - Bugzilla