CVE-2021-3713

Summary

CVE	CVE-2021-3713
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2021-08-25 19:15:00 UTC
Updated	2022-10-25 20:37:00 UTC
Description	An out-of-bounds write flaw was found in the UAS (USB Attached SCSI) device emulation of QEMU in versions prior to 6.2.0-rc0. The device uses the guest supplied stream number unchecked, which can lead to out-of-bounds access to the UASDevice->data3 and UASDevice->status3 fields. A malicious guest user could use this flaw to crash QEMU or potentially achieve code execution with the privileges of the QEMU process on the host.

Risk And Classification

Problem Types: CWE-787

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Debian	Debian Linux	10.0	All	All	All
Operating System	Debian	Debian Linux	11.0	All	All	All
Operating System	Debian	Debian Linux	9.0	All	All	All
Application	Qemu	Qemu	All	All	All	All

References

Reference	Source	Link	Tags
1994640 – (CVE-2021-3713) CVE-2021-3713 QEMU: out-of-bounds write in UAS (USB Attached SCSI) device emulation	MISC	bugzilla.redhat.com
Debian -- Security Information -- DSA-4980-1 qemu	DEBIAN	www.debian.org
[SECURITY] [DLA 3099-1] qemu security update	MLIST	lists.debian.org
[SECURITY] [DLA 2753-1] qemu security update	MLIST	lists.debian.org
QEMU: Multiple Vulnerabilities (GLSA 202208-27) — Gentoo security	GENTOO	security.gentoo.org
CVE-2021-3713 QEMU Vulnerability in NetApp Products \| NetApp Product Security	CONFIRM	security.netapp.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

159582 Oracle Enterprise Linux Security Update for qemu (ELSA-2021-9638)
159672 Oracle Enterprise Linux Security Update for kvm_utils (ELSA-2022-9172)
178782 Debian Security Update for qemu (DLA 2753-1)
178817 Debian Security Update for qemu (DSA 4980-1)
180995 Debian Security Update for qemu (DLA 3099-1)
184759 Debian Security Update for qemu (CVE-2021-3713)
198683 Ubuntu Security Notification for QEMU Vulnerabilities (USN-5307-1)
502168 Alpine Linux Security Update for qemu
671198 EulerOS Security Update for qemu (EulerOS-SA-2022-1034)
671203 EulerOS Security Update for qemu (EulerOS-SA-2022-1014)
710604 Gentoo Linux QEMU Multiple Vulnerabilities (GLSA 202208-27)
751276 SUSE Enterprise Linux Security Update for qemu (SUSE-SU-2021:3519-1)
751322 SUSE Enterprise Linux Security Update for qemu (SUSE-SU-2021:3614-1)
751323 SUSE Enterprise Linux Security Update for qemu (SUSE-SU-2021:3613-1)
751330 OpenSUSE Security Update for qemu (openSUSE-SU-2021:3614-1)
751332 OpenSUSE Security Update for qemu (openSUSE-SU-2021:3605-1)
751334 OpenSUSE Security Update for qemu (openSUSE-SU-2021:3604-1)
751337 OpenSUSE Security Update for qemu (openSUSE-SU-2021:1461-1)
751338 SUSE Enterprise Linux Security Update for qemu (SUSE-SU-2021:3635-1)
751362 SUSE Enterprise Linux Security Update for qemu (SUSE-SU-2021:3653-1)
900324 CBL-Mariner Linux Security Update for qemu-kvm 4.2.0
901894 Common Base Linux Mariner (CBL-Mariner) Security Update for qemu (6831)
902094 Common Base Linux Mariner (CBL-Mariner) Security Update for qemu (6831-1)
902980 Common Base Linux Mariner (CBL-Mariner) Security Update for qemu-kvm (5433)