A flaw was found in QEMU. An assertion failure was present in the update_sctp_checksum() function in hw/net/net_tx_pkt.c when trying to calculate the checksum of a short-sized fragmented packet. This flaw allows a malicious guest to crash QEMU and cause a denial of service condition.
History

Fri, 22 Nov 2024 12:00:00 +0000

Type Values Removed Values Added
References

Thu, 19 Sep 2024 10:30:00 +0000

Type Values Removed Values Added
References
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 19 Sep 2024 09:30:00 +0000

Type Values Removed Values Added
Title Qemu: net: assertion failure in update_sctp_checksum() Qemu-kvm: net: assertion failure in update_sctp_checksum()

Sat, 14 Sep 2024 08:30:00 +0000

Type Values Removed Values Added
References

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2024-04-10T14:32:02.343Z

Updated: 2024-11-15T17:53:40.228Z

Reserved: 2024-04-10T07:32:56.203Z

Link: CVE-2024-3567

cve-icon Vulnrichment

Updated: 2024-08-22T18:03:13.928Z

cve-icon NVD

Status : Modified

Published: 2024-04-10T15:16:05.097

Modified: 2024-11-21T09:29:53.617

Link: CVE-2024-3567

cve-icon Redhat

Severity : Moderate

Publid Date: 2024-04-08T00:00:00Z

Links: CVE-2024-3567 - Bugzilla