Wind River Support Network

HomeDefectsLINCD-8493
Fixed

LINCD-8493 : Security Advisory - qemu - CVE-2022-26354

Created: Mar 10, 2022    Updated: Apr 27, 2022
Resolved Date: Apr 9, 2022
Found In Version: 10.20.6.0
Fix Version: 10.22.17.0
Severity: Standard
Applicable for: Wind River Linux CD
Component/s: Userspace

Description

A flaw was found in the vhost-vsock device of QEMU. In case of error, an invalid element was not detached from the virtqueue before freeing its memory, leading to memory leakage and other unexpected results. Affected QEMU versions <= 6.2.0.

https://nvd.nist.gov/vuln/detail/CVE-2022-26354

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube