CVE-2021-20257 — MEDIUM (6.5)

Q: How severe is CVE-2021-20257?

CVE-2021-20257 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2021-20257?

Check the references section above for vendor advisories and patch information. Affected products include: Qemu Qemu, Fedoraproject Fedora, Redhat Openstack Platform, Redhat Enterprise Linux, Redhat Enterprise Linux For Ibm Z Systems.

Vulnerability Description

An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. This issue occurs while processing transmits (tx) descriptors in process_tx_desc if various descriptor fields are initialized with invalid values. This flaw allows a guest to consume CPU cycles on the host, resulting in a denial of service. The highest threat from this vulnerability is to system availability.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Qemu	Qemu	< 6.2.0
Fedoraproject	Fedora	33
Redhat	Openstack Platform	10.0
Redhat	Enterprise Linux	6.0
Redhat	Enterprise Linux For Ibm Z Systems	8.0
Redhat	Enterprise Linux For Power Little Endian	8.0
Redhat	Codeready Linux Builder	-
Debian	Debian Linux	10.0

Related Weaknesses (CWE)

CWE-835

References

https://bugzilla.redhat.com/show_bug.cgi?id=1930087Issue TrackingPatchThird Party Advisory
https://github.com/qemu/qemu/commit/3de46e6fc489c52c9431a8a832ad8170a7569bd8PatchThird Party Advisory
https://lists.debian.org/debian-lts-announce/2022/09/msg00008.htmlMailing ListThird Party Advisory
https://lists.gnu.org/archive/html/qemu-devel/2021-02/msg07428.htmlMailing ListPatchVendor Advisory
https://security.gentoo.org/glsa/202208-27Third Party Advisory
https://security.netapp.com/advisory/ntap-20220425-0003/Third Party Advisory
https://www.openwall.com/lists/oss-security/2021/02/25/2Mailing ListPatchThird Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1930087Issue TrackingPatchThird Party Advisory
https://github.com/qemu/qemu/commit/3de46e6fc489c52c9431a8a832ad8170a7569bd8PatchThird Party Advisory
https://lists.debian.org/debian-lts-announce/2022/09/msg00008.htmlMailing ListThird Party Advisory
https://lists.gnu.org/archive/html/qemu-devel/2021-02/msg07428.htmlMailing ListPatchVendor Advisory
https://security.gentoo.org/glsa/202208-27Third Party Advisory
https://security.netapp.com/advisory/ntap-20220425-0003/Third Party Advisory
https://www.openwall.com/lists/oss-security/2021/02/25/2Mailing ListPatchThird Party Advisory

FAQ

What is CVE-2021-20257?

CVE-2021-20257 is a vulnerability with a CVSS score of 6.5 (MEDIUM). An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. This issue occurs while processing transmits (tx) descriptors in process_tx_desc if various descriptor fields are initialized wit...

How severe is CVE-2021-20257?

CVE-2021-20257 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-20257?

Check the references section above for vendor advisories and patch information. Affected products include: Qemu Qemu, Fedoraproject Fedora, Redhat Openstack Platform, Redhat Enterprise Linux, Redhat Enterprise Linux For Ibm Z Systems.