CVE-2021-3607 log

Source
Severity Low
Remote No
Type Denial of service
Description
An integer overflow was found in the QEMU implementation of VMWare's paravirtual RDMA device. It could occur while handling a "PVRDMA_REG_DSRHIGH" write from the guest due to improper input validation. A privileged guest user could use this flaw to make QEMU allocate a large amount of memory, resulting in a denial of service.
Group Package Affected Fixed Severity Status Ticket
AVG-1898 qemu 6.0.0-3 Medium Vulnerable
References
https://bugzilla.redhat.com/show_bug.cgi?id=1973349