CVE-2021-20221
First published: Wed Feb 03 2021(Updated: )
An out-of-bound heap buffer access via an interrupt ID field resulting from undefined behaviour. The Interrupt ID of the SGI to forward to the specified CPU interfaces. The value of this field is the Interrupt ID, in the range 0-15, for example a value of 0b0011 specifies Interrupt ID 3. It requires unusual kernel start-up with 'kernel-irqchip=off'. This issue does not affect default configuration ie. kernel-irqchip=on. Upstream patch: --------------- -> <a href="https://gitlab.com/qemu-project/qemu/-/commit/edfe2eb4360cde4ed5d95bda7777edcb3510f76a">https://gitlab.com/qemu-project/qemu/-/commit/edfe2eb4360cde4ed5d95bda7777edcb3510f76a</a>
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| QEMU qemu | <=4.2.0 | |
| Redhat Enterprise Linux | =8.0 | |
| Redhat Enterprise Linux | =8.0 | |
| Debian Debian Linux | =9.0 | |
| Debian Debian Linux | =10.0 | |
| debian/qemu | 1:5.2+dfsg-11+deb11u3 1:5.2+dfsg-11+deb11u2 1:7.2+dfsg-7+deb12u7 1:9.2.0+ds-2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.openwall.com/lists/oss-security/2021/02/05/1
- https://bugzilla.redhat.com/show_bug.cgi?id=1924601
- https://lists.debian.org/debian-lts-announce/2021/02/msg00024.html
- https://lists.debian.org/debian-lts-announce/2022/09/msg00008.html
- https://security.netapp.com/advisory/ntap-20210708-0005/
- https://launchpad.net/bugs/cve/CVE-2021-20221
- https://gitlab.com/qemu-project/qemu/-/commit/edfe2eb4360cde4ed5d95bda7777edcb3510f76a
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1924602
- https://bugs.launchpad.net/qemu/+bug/1914353
- https://www.openwall.com/lists/oss-security/2021/02/05/1
- https://access.redhat.com/errata/RHSA-2021:1125
- https://access.redhat.com/security/cve/cve-2021-20221
- https://access.redhat.com/errata/RHSA-2021:2521
- https://access.redhat.com/errata/RHSA-2021:3061
- https://security-tracker.debian.org/tracker/CVE-2021-20221
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20221
- https://nvd.nist.gov/vuln/detail/CVE-2021-20221
- https://ubuntu.com/security/CVE-2021-20221
Frequently Asked Questions
What is CVE-2021-20221?
CVE-2021-20221 is an out-of-bounds heap buffer access vulnerability in the ARM Generic Interrupt Controller emulator of QEMU.
Which software versions are affected by CVE-2021-20221?
QEMU up to and including version 4.2.0 on the aarch64 platform, Redhat Enterprise Linux 8.0, Debian Debian Linux 9.0 and 10.0.
What is the severity of CVE-2021-20221?
CVE-2021-20221 has a severity rating of medium (6).
How do I fix CVE-2021-20221 for QEMU?
To fix CVE-2021-20221 for QEMU, you should update to version 4.2.1 or later.
Where can I find more information about CVE-2021-20221?
You can find more information about CVE-2021-20221 in the referenced links: [Link 1](https://gitlab.com/qemu-project/qemu/-/commit/edfe2eb4360cde4ed5d95bda7777edcb3510f76a), [Link 2](https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1924602), [Link 3](https://bugs.launchpad.net/qemu/+bug/1914353)
- collector/nvd-index
- agent/weakness
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- agent/author
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- agent/severity
- collector/mitre-cve
- source/MITRE
- collector/usn-cve
- source/Ubuntu
- agent/remedy
- agent/references
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2021-20221
- agent/last-modified-date
- agent/tags
- agent/event
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- agent/trending
- vendor/qemu
- canonical/qemu qemu
- version/qemu qemu/4.2.0
- vendor/redhat
- canonical/redhat enterprise linux
- version/redhat enterprise linux/8.0
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/9.0
- version/debian debian linux/10.0
- package-manager/debian