Wind River Support Network

HomeDefectsLINCD-8537
Fixed

LINCD-8537 : Security Advisory - qemu - CVE-2022-26353

Created: Mar 14, 2022    Updated: Apr 27, 2022
Resolved Date: Apr 9, 2022
Found In Version: 10.20.6.0
Fix Version: 10.22.17.0
Severity: Standard
Applicable for: Wind River Linux CD
Component/s: Userspace

Description

A flaw was found in the virtio-net device of QEMU. This flaw was inadvertently introduced with the fix for CVE-2021-3748, which forgot to unmap the cached virtqueue elements on error, leading to memory leakage and other unexpected results. Affected QEMU version: 6.2.0.

https://nvd.nist.gov/vuln/detail/CVE-2022-26353

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube