CVE-2021-4158

A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.

References

Affected packages

Git / gitlab.com/qemu-project/qemu

Affected ranges

Type: GIT
Repo: https://gitlab.com/qemu-project/qemu
Events: Fixed

9bd6565ccee68f72d5012e24646e12a1c662827e

Introduced

609d7596524ab204ccd71ef42c9eee4c7c338ea4

Fixed

9bd6565ccee68f72d5012e24646e12a1c662827e

Affected versions

v6.*

v6.0.0

v6.1.0

v6.1.0-rc0

v6.1.0-rc1

v6.1.0-rc2

v6.1.0-rc3

v6.1.0-rc4

v6.2.0

v6.2.0-rc0

v6.2.0-rc1

v6.2.0-rc3

v6.2.0-rc4

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-4158.json"

vanir_signatures

[
    {
        "signature_type": "Line",
        "digest": {
            "line_hashes": [
                "29241769371726105858997322140807546074",
                "204869718129668260300591851454772074210",
                "104609843986139743672680069331723361112",
                "16931581179525205007109690658504937315"
            ],
            "threshold": 0.9
        },
        "source": "https://gitlab.com/qemu-project/qemu@9bd6565ccee68f72d5012e24646e12a1c662827e",
        "signature_version": "v1",
        "id": "CVE-2021-4158-18b1015f",
        "target": {
            "file": "hw/acpi/pcihp.c"
        },
        "deprecated": false
    },
    {
        "signature_type": "Function",
        "digest": {
            "length": 1035.0,
            "function_hash": "151015625364822090940316435929247005440"
        },
        "source": "https://gitlab.com/qemu-project/qemu@9bd6565ccee68f72d5012e24646e12a1c662827e",
        "signature_version": "v1",
        "id": "CVE-2021-4158-5541ba0b",
        "target": {
            "file": "hw/acpi/pcihp.c",
            "function": "pci_write"
        },
        "deprecated": false
    }
]