A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.
{
"unresolved_ranges": [
{
"vendor_product": "redhat:enterprise_linux",
"extracted_events": [
{
"introduced": "9.0"
},
{
"last_affected": "9.0"
}
],
"source": "CPE_STRING",
"cpes": [
"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*"
]
}
]
}