fkie_nvd - fkie_cve-2024-4467

fkie_cve-2024-4467

Vulnerability from fkie_nvd

Published

2024-07-02 16:15

Modified

2024-11-21 09:42

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

A flaw was found in the QEMU disk image utility (qemu-img) 'info' command. A specially crafted image file containing a `json:{}` value describing block devices in QMP could cause the qemu-img process on the host to consume large amounts of memory or CPU time, leading to denial of service or read/write to an existing external file.

References

	URL	Tags
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:4276
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:4277
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:4278
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:4372
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:4373
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:4374
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:4420
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:4724
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:4727
	secalert@redhat.com	https://access.redhat.com/security/cve/CVE-2024-4467
	secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=2278875
	af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2024/07/23/2
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:4276
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:4277
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:4278
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:4372
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:4373
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:4374
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:4420
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:4724
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:4727
	af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/security/cve/CVE-2024-4467
	af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/show_bug.cgi?id=2278875
	af854a3a-2127-422b-91ae-364da2661108	https://security.netapp.com/advisory/ntap-20240822-0005/

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A flaw was found in the QEMU disk image utility (qemu-img) \u0027info\u0027 command. A specially crafted image file containing a `json:{}` value describing block devices in QMP could cause the qemu-img process on the host to consume large amounts of memory or CPU time, leading to denial of service or read/write to an existing external file."
    },
    {
      "lang": "es",
      "value": "Se encontr\u00f3 una falla en el comando \u0027info\u0027 de la utilidad de imagen de disco QEMU (qemu-img). Un archivo de imagen especialmente manipulado que contenga un valor `json:{}` que describa los dispositivos de bloque en QMP podr\u00eda provocar que el proceso qemu-img en el host consuma grandes cantidades de memoria o tiempo de CPU, lo que provocar\u00eda una denegaci\u00f3n de servicio o lectura/escritura en un archivo externo existente."
    }
  ],
  "id": "CVE-2024-4467",
  "lastModified": "2024-11-21T09:42:52.947",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "secalert@redhat.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2024-07-02T16:15:05.423",
  "references": [
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:4276"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:4277"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:4278"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:4372"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:4373"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:4374"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:4420"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:4724"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:4727"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/security/cve/CVE-2024-4467"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278875"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.openwall.com/lists/oss-security/2024/07/23/2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:4276"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:4277"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:4278"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:4372"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:4373"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:4374"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:4420"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:4724"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:4727"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/security/cve/CVE-2024-4467"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278875"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://security.netapp.com/advisory/ntap-20240822-0005/"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-400"
        }
      ],
      "source": "secalert@redhat.com",
      "type": "Secondary"
    }
  ]
}

CVE-2024-4467 (GCVE-0-2024-4467)

Vulnerability from cvelistv5

Published

2024-07-02 15:57

Modified

2025-11-08 04:04

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-400 - Uncontrolled Resource Consumption

Summary

References

URL

Tags

	https://access.redhat.com/errata/RHSA-2024:4276	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4277	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4278	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4372	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4373	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4374	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4420	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4724	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4727	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/security/cve/CVE-2024-4467	vdb-entry, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2278875	issue-tracking, x_refsource_REDHAT

Impacted products

Vendor

Product

Version

Version: 4.0.0 ≤

Red Hat	Advanced Virtualization for RHEL 8.2.1	Unaffected: 8020120240708124623.863bb0db < * cpe:/a:redhat:advanced_virtualization:8.2::el8
Red Hat	Advanced Virtualization for RHEL 8.4.0.EUS	Unaffected: 8040020240708093550.522a0ee4 < * cpe:/a:redhat:advanced_virtualization:8.4::el8
Red Hat	Advanced Virtualization for RHEL 8.4.0.EUS	Unaffected: 8040020240708093550.522a0ee4 < * cpe:/a:redhat:advanced_virtualization:8.4::el8
Red Hat	Red Hat Enterprise Linux 8	Unaffected: 8100020240704072441.489197e6 < * cpe:/a:redhat:enterprise_linux:8::crb cpe:/a:redhat:enterprise_linux:8::appstream
Red Hat	Red Hat Enterprise Linux 8	Unaffected: 8100020240704072441.489197e6 < * cpe:/a:redhat:enterprise_linux:8::crb cpe:/a:redhat:enterprise_linux:8::appstream
Red Hat	Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support	Unaffected: 8040020240703100448.522a0ee4 < * cpe:/a:redhat:rhel_e4s:8.4::appstream cpe:/a:redhat:rhel_aus:8.4::appstream cpe:/a:redhat:rhel_tus:8.4::appstream
Red Hat	Red Hat Enterprise Linux 8.4 Telecommunications Update Service	Unaffected: 8040020240703100448.522a0ee4 < * cpe:/a:redhat:rhel_e4s:8.4::appstream cpe:/a:redhat:rhel_aus:8.4::appstream cpe:/a:redhat:rhel_tus:8.4::appstream
Red Hat	Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions	Unaffected: 8040020240703100448.522a0ee4 < * cpe:/a:redhat:rhel_e4s:8.4::appstream cpe:/a:redhat:rhel_aus:8.4::appstream cpe:/a:redhat:rhel_tus:8.4::appstream
Red Hat	Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support	Unaffected: 8060020240703092415.ad008a3a < * cpe:/a:redhat:rhel_aus:8.6::appstream cpe:/a:redhat:rhel_e4s:8.6::appstream cpe:/a:redhat:rhel_tus:8.6::appstream
Red Hat	Red Hat Enterprise Linux 8.6 Telecommunications Update Service	Unaffected: 8060020240703092415.ad008a3a < * cpe:/a:redhat:rhel_aus:8.6::appstream cpe:/a:redhat:rhel_e4s:8.6::appstream cpe:/a:redhat:rhel_tus:8.6::appstream
Red Hat	Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions	Unaffected: 8060020240703092415.ad008a3a < * cpe:/a:redhat:rhel_aus:8.6::appstream cpe:/a:redhat:rhel_e4s:8.6::appstream cpe:/a:redhat:rhel_tus:8.6::appstream
Red Hat	Red Hat Enterprise Linux 8.8 Extended Update Support	Unaffected: 8080020240703085245.63b34585 < * cpe:/a:redhat:rhel_eus:8.8::crb cpe:/a:redhat:rhel_eus:8.8::appstream
Red Hat	Red Hat Enterprise Linux 8.8 Extended Update Support	Unaffected: 8080020240703085245.63b34585 < * cpe:/a:redhat:rhel_eus:8.8::crb cpe:/a:redhat:rhel_eus:8.8::appstream
Red Hat	Red Hat Enterprise Linux 9	Unaffected: 17:8.2.0-11.el9_4.4 < * cpe:/a:redhat:enterprise_linux:9::appstream
Red Hat	Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions	Unaffected: 17:6.2.0-11.el9_0.9 < * cpe:/a:redhat:rhel_e4s:9.0::appstream
Red Hat	Red Hat Enterprise Linux 9.2 Extended Update Support	Unaffected: 17:7.2.0-14.el9_2.11 < * cpe:/a:redhat:rhel_eus:9.2::appstream
Red Hat	Red Hat Enterprise Linux 10	cpe:/o:redhat:enterprise_linux:10
Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 8 Advanced Virtualization	cpe:/a:redhat:advanced_virtualization:8::el8
Red Hat	Red Hat OpenShift Virtualization 4	cpe:/a:redhat:container_native_virtualization:4

Show details on NVD website