CVE 2021-3507
A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 (including). It could occur in fdctrl_
Related bugs and status
CVE-2021-3507 (Candidate) is related to these bugs:
Bug #1853307: [22.04 FEAT] Enhanced Interpretation for PCI Functions - qemu part
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1853307 | [22.04 FEAT] Enhanced Interpretation for PCI Functions - qemu part | qemu (Ubuntu) | Undecided | Fix Released | ||
| 1853307 | [22.04 FEAT] Enhanced Interpretation for PCI Functions - qemu part | Ubuntu on IBM z Systems | Medium | Fix Released | ||
| 1853307 | [22.04 FEAT] Enhanced Interpretation for PCI Functions - qemu part | qemu (Ubuntu Lunar) | Undecided | Fix Released | ||
| 1853307 | [22.04 FEAT] Enhanced Interpretation for PCI Functions - qemu part | qemu (Ubuntu Kinetic) | Undecided | Won't Fix | ||
| 1853307 | [22.04 FEAT] Enhanced Interpretation for PCI Functions - qemu part | qemu (Ubuntu Jammy) | Undecided | Fix Released | ||
Bug #1957924: rpc-worker: debugfs access is restricted
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1957924 | rpc-worker: debugfs access is restricted | libvirt (Ubuntu) | Undecided | Fix Released | ||
| 1957924 | rpc-worker: debugfs access is restricted | libvirt | Unknown | Fix Released | ||
| 1957924 | rpc-worker: debugfs access is restricted | qemu (Ubuntu) | Undecided | Fix Released | ||
Bug #1959966: [23.04 FEAT] KVM: Secure Execution guest dump encryption with customer keys - qemu part
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1959966 | [23.04 FEAT] KVM: Secure Execution guest dump encryption with customer keys - qemu part | qemu (Ubuntu) | High | Fix Released | ||
| 1959966 | [23.04 FEAT] KVM: Secure Execution guest dump encryption with customer keys - qemu part | Ubuntu on IBM z Systems | High | Fix Released | ||
Bug #1967814: Ubuntu 20.04.3 - ilzlnx3g1 - virtio-scsi devs on KVM guest having miscompares on disktests when there is a failed path.
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1967814 | Ubuntu 20.04.3 - ilzlnx3g1 - virtio-scsi devs on KVM guest having miscompares on disktests when there is a failed path. | qemu (Ubuntu) | Undecided | Fix Released | ||
| 1967814 | Ubuntu 20.04.3 - ilzlnx3g1 - virtio-scsi devs on KVM guest having miscompares on disktests when there is a failed path. | Ubuntu on IBM z Systems | High | Fix Released | ||
| 1967814 | Ubuntu 20.04.3 - ilzlnx3g1 - virtio-scsi devs on KVM guest having miscompares on disktests when there is a failed path. | qemu (Ubuntu Focal) | Undecided | Fix Released | ||
Bug #1970737: Stalled IO Operations During MySQL Tests (with sysbench)
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1970737 | Stalled IO Operations During MySQL Tests (with sysbench) | qemu (Ubuntu) | Undecided | Fix Released | ||
| 1970737 | Stalled IO Operations During MySQL Tests (with sysbench) | qemu (Ubuntu Jammy) | Undecided | Fix Released | ||
| 1970737 | Stalled IO Operations During MySQL Tests (with sysbench) | qemu (Ubuntu Kinetic) | Undecided | Fix Released | ||
Bug #1971315: Merge qemu from Debian unstable for kinetic
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1971315 | Merge qemu from Debian unstable for kinetic | qemu (Ubuntu) | Undecided | Fix Released | ||
| 1971315 | Merge qemu from Debian unstable for kinetic | xen (Ubuntu) | Undecided | Fix Released | ||
Bug #1980896: failed to install ca-certificates-java in ppc64le systems: fatal: Tried to call a TRAP
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1980896 | failed to install ca-certificates-java in ppc64le systems: fatal: Tried to call a TRAP | qemu (Ubuntu) | Undecided | Fix Released | ||
| 1980896 | failed to install ca-certificates-java in ppc64le systems: fatal: Tried to call a TRAP | qemu (Ubuntu Focal) | Undecided | Confirmed | ||
| 1980896 | failed to install ca-certificates-java in ppc64le systems: fatal: Tried to call a TRAP | qemu (Ubuntu Bionic) | Undecided | Won't Fix | ||
| 1980896 | failed to install ca-certificates-java in ppc64le systems: fatal: Tried to call a TRAP | qemu (Ubuntu Kinetic) | Undecided | Fix Released | ||
| 1980896 | failed to install ca-certificates-java in ppc64le systems: fatal: Tried to call a TRAP | qemu (Ubuntu Impish) | Undecided | Won't Fix | ||
| 1980896 | failed to install ca-certificates-java in ppc64le systems: fatal: Tried to call a TRAP | qemu (Ubuntu Jammy) | Undecided | Fix Released | ||
Bug #1981339: [UBUNTU 22.04] s390x system emulation of QEMU has random hangs
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1981339 | [UBUNTU 22.04] s390x system emulation of QEMU has random hangs | qemu (Ubuntu) | Undecided | Fix Released | ||
| 1981339 | [UBUNTU 22.04] s390x system emulation of QEMU has random hangs | Ubuntu on IBM z Systems | Undecided | Fix Released | ||
| 1981339 | [UBUNTU 22.04] s390x system emulation of QEMU has random hangs | qemu (Ubuntu Jammy) | Undecided | Fix Released | ||
Bug #1988704: Consider adding further qemu modules that depend on universe
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1988704 | Consider adding further qemu modules that depend on universe | qemu (Ubuntu) | Medium | Fix Released | ||
Bug #1993438: Merge qemu from Debian unstable for l-series
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1993438 | Merge qemu from Debian unstable for l-series | qemu (Ubuntu) | Undecided | Fix Released | ||
Bug #1999885: [UBUNTU 20.04] KVM: s390: pv: don't allow userspace to set the clock under PV - qemu part
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1999885 | [UBUNTU 20.04] KVM: s390: pv: don't allow userspace to set the clock under PV - qemu part | qemu (Ubuntu) | Low | Fix Released | ||
| 1999885 | [UBUNTU 20.04] KVM: s390: pv: don't allow userspace to set the clock under PV - qemu part | Ubuntu on IBM z Systems | High | Fix Released | ||
| 1999885 | [UBUNTU 20.04] KVM: s390: pv: don't allow userspace to set the clock under PV - qemu part | qemu (Ubuntu Lunar) | Low | Fix Released | ||
| 1999885 | [UBUNTU 20.04] KVM: s390: pv: don't allow userspace to set the clock under PV - qemu part | qemu (Ubuntu Jammy) | Undecided | Fix Released | ||
| 1999885 | [UBUNTU 20.04] KVM: s390: pv: don't allow userspace to set the clock under PV - qemu part | qemu (Ubuntu Focal) | Undecided | Fix Released | ||
| 1999885 | [UBUNTU 20.04] KVM: s390: pv: don't allow userspace to set the clock under PV - qemu part | qemu (Ubuntu Kinetic) | Undecided | Fix Released | ||
Bug #2038888: [Debian] High CVE: CVE-2020-14394/CVE-2021-20196/.../CVE-2023-3301/CVE-2023-3354 qemu: multiple CVEs
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 2038888 | [Debian] High CVE: CVE-2020-14394/CVE-2021-20196/.../CVE-2023-3301/CVE-2023-3354 qemu: multiple CVEs | StarlingX | High | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
