CVE-2023-3019
Qemu: e1000e: heap use-after-free in e1000e_write_packet_to_guest()
A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service.
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H
Productos afectados
Red Hat · Red Hat Enterprise Linux 6Red Hat · Red Hat Enterprise Linux 7Red Hat · Red Hat Enterprise Linux 8Red Hat · Red Hat Enterprise Linux 8.6 Extended Update SupportRed Hat · Red Hat Enterprise Linux 8.8 Extended Update SupportRed Hat · Red Hat Enterprise Linux 8 Advanced VirtualizationRed Hat · Red Hat Enterprise Linux 9¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
https://access.redhat.com/errata/RHSA-2024:0135https://access.redhat.com/errata/RHSA-2024:0404https://access.redhat.com/errata/RHSA-2024:0569https://access.redhat.com/errata/RHSA-2024:2135https://access.redhat.com/security/cve/CVE-2023-3019https://bugzilla.redhat.com/show_bug.cgi?id=2222351https://cert-portal.siemens.com/productcert/html/ssa-577017.htmlhttps://lists.debian.org/debian-lts-announce/2025/04/msg00042.htmlhttps://security.netapp.com/advisory/ntap-20230831-0005/