Integer Overflow or Wraparound
CVE-2022-4172
Summary
An integer overflow and buffer overflow issues were found in the ACPI Error Record Serialization Table (ERST) device of QEMU versions prior to 7.2.0-rc0 in the "read_erst_record()" and "write_erst_record()" functions. Both issues may allow the guest to overrun the host buffer allocated for the ERST memory device. A malicious guest could use these flaws to crash the QEMU process on the host.
- LOW
- LOCAL
- NONE
- CHANGED
- NONE
- LOW
- NONE
- HIGH
CWE-190 - Integer Overflow or Wraparound
The software performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.
References
Advisory Timeline
- Published