« List of all CVEs

CVE-2021-4158

Published: 8/24/2022 Last updated: 8/3/2024 Reserved: 12/23/2021

A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Opam packages affected (2)

conf-qemu-img nbd-tool

Products affected (1)

Product Vendor Version
QEMU n/a < 27914f2b795e2b58e9506f281dcdd98fef09d3c2

References (20)