CVE-2023-3354

Source
https://cve.org/CVERecord?id=CVE-2023-3354
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-3354.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-3354
Downstream
Related
Published
2023-07-11T16:16:56.294Z
Modified
2026-07-07T08:52:35.985464317Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
Improper i/o watch removal in tls handshake can lead to remote unauthenticated denial of service
Details

A flaw was found in the QEMU built-in VNC server. When a client connects to the VNC server, QEMU checks whether the current number of connections crosses a certain threshold and if so, cleans up the previous connection. If the previous connection happens to be in the handshake phase and fails, QEMU cleans up the connection again, resulting in a NULL pointer dereference issue. This could allow a remote unauthenticated client to cause a denial of service.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/3xxx/CVE-2023-3354.json",
    "cna_assigner": "redhat",
    "cwe_ids": [
        "CWE-476"
    ]
}
References

Affected packages

Git / github.com/qemu/qemu

Affected ranges

Type
GIT
Repo
https://github.com/qemu/qemu
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Introduced
Database specific
{
    "cpe": [
        "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*",
        "cpe:2.3:a:qemu:qemu:8.1.0:rc0:*:*:*:*:*:*",
        "cpe:2.3:a:qemu:qemu:8.1.0:rc1:*:*:*:*:*:*"
    ],
    "source": [
        "CPE_RANGE",
        "CPE_STRING"
    ],
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "8.1.0"
        },
        {
            "introduced": "8.1.0-rc0"
        },
        {
            "last_affected": "8.1.0-rc0"
        },
        {
            "introduced": "8.1.0-rc1"
        },
        {
            "last_affected": "8.1.0-rc1"
        }
    ]
}

Affected versions

8.*
8.1.0-rc0
8.1.0-rc1
v8.*
v8.1.0-rc0
v8.1.0-rc1
v8.1.0-rc2
v8.1.0-rc3
v8.1.0-rc4

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-3354.json"

Git / gitlab.com/qemu-project/qemu

Affected ranges

Type
GIT
Repo
https://gitlab.com/qemu-project/qemu
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Introduced
Database specific
{
    "cpe": [
        "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*",
        "cpe:2.3:a:qemu:qemu:8.1.0:rc0:*:*:*:*:*:*",
        "cpe:2.3:a:qemu:qemu:8.1.0:rc1:*:*:*:*:*:*"
    ],
    "source": [
        "CPE_RANGE",
        "CPE_STRING"
    ],
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "8.1.0"
        },
        {
            "introduced": "8.1.0-rc0"
        },
        {
            "last_affected": "8.1.0-rc0"
        },
        {
            "introduced": "8.1.0-rc1"
        },
        {
            "last_affected": "8.1.0-rc1"
        }
    ]
}

Affected versions

8.*
8.1.0-rc0
8.1.0-rc1
v8.*
v8.1.0-rc0
v8.1.0-rc1
v8.1.0-rc2
v8.1.0-rc3
v8.1.0-rc4

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-3354.json"