Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2022-36648

Published: 22 August 2023

The hardware emulation in the of_dpa_cmd_add_l2_flood of rocker device model in QEMU, as used in 7.0.0 and earlier, allows remote attackers to crash the host qemu and potentially execute code on the host via execute a malformed program in the guest OS.

Notes

Author	Note
mdeslaur	As of 2023-11-30, patch is not commited to upstream

Priority

Cvss 3 Severity Score

10.0

Score breakdown

Status

Package	Release	Status
qemu Launchpad, Ubuntu, Debian	upstream	Needs triage
	bionic	Deferred (2023-11-30)
	focal	Deferred (2023-11-30)
	jammy	Deferred (2023-11-30)
	lunar	Deferred (2023-11-30)
	mantic	Deferred (2023-11-30)
	trusty	Deferred (2023-11-30)
	xenial	Deferred (2023-11-30)

Severity score breakdown

Parameter	Value
Base score	10.0
Attack vector	Network
Attack complexity	Low
Privileges required	None
User interaction	None
Scope	Changed
Confidentiality	High
Integrity impact	High
Availability impact	High
Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

References

Bugs

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1052670

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading