CVE-2021-3607 log

Severity Low
Remote No
Type Denial of service
An integer overflow was found in the QEMU implementation of VMWare's paravirtual RDMA device. It could occur while handling a "PVRDMA_REG_DSRHIGH" write from the guest due to improper input validation. A privileged guest user could use this flaw to make QEMU allocate a large amount of memory, resulting in a denial of service.
Group Package Affected Fixed Severity Status Ticket
AVG-2322 qemu 6.0.0-3 6.1.0-1 Medium Fixed