CVE & CISA-KEV Catalog

CVE-2022-4172

MEDIUM
6.5
CVSS v3
NVD

Description

An integer overflow and buffer overflow issues were found in the ACPI Error Record Serialization Table (ERST) device of QEMU in the read_erst_record() and write_erst_record() functions. Both issues may allow the guest to overrun the host buffer allocated for the ERST memory device. A malicious guest could use these flaws to crash the QEMU process on the host.

How to fix

Remediation Available
qemuDebian
Fixed in:1:7.2+dfsg-1CVE-2022-4172
Fixed in:1:7.2+dfsg-1CVE-2022-4172
Fixed in:1:7.2+dfsg-1CVE-2022-4172
qemu-guest-agentRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-guest-agentRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-guest-agent-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-guest-agent-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-imgRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-imgRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-img-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-img-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvmRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvmRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-audio-paRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-audio-paRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-audio-pa-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-audio-pa-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-block-curlRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-block-curlRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-block-curl-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-block-curl-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-block-rbdRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-block-rbdRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-block-rbd-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-block-rbd-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-commonRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-commonRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-common-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-common-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-coreRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-coreRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-core-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-core-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-debugsourceRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-debugsourceRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-display-virtio-gpuRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-display-virtio-gpuRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-display-virtio-gpu-ccwRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-display-virtio-gpu-ccwRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-display-virtio-gpu-ccw-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-display-virtio-gpu-ccw-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-display-virtio-gpu-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-display-virtio-gpu-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-display-virtio-gpu-pciRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-display-virtio-gpu-pciRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-display-virtio-gpu-pci-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-display-virtio-gpu-pci-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-display-virtio-vgaRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-display-virtio-vgaRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-display-virtio-vga-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-display-virtio-vga-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-usb-hostRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-usb-hostRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-usb-host-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-usb-host-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-usb-redirectRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-usb-redirectRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-usb-redirect-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-device-usb-redirect-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-docsRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-docsRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-tests-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-tests-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-toolsRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-toolsRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-tools-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-tools-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-ui-egl-headlessRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-ui-egl-headlessRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-ui-egl-headless-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-ui-egl-headless-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-ui-openglRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-ui-openglRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-ui-opengl-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-kvm-ui-opengl-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-pr-helperRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-pr-helperRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-pr-helper-debuginfoRocky
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemu-pr-helper-debuginfoRed Hat / RHEL
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
Fixed in:17:7.2.0-14.el9_2RHSA-2023:2162
qemuUbuntu
Fixed in:2.0.0+dfsg-2ubuntu1.47+esm3USN-6167-1
Fixed in:1:2.5+dfsg-5ubuntu10.51+esm2USN-6167-1
Fixed in:1:2.11+dfsg-1ubuntu7.42+esm1USN-6167-1
Fixed in:1:4.2-3ubuntu6.27USN-6167-1
Fixed in:1:6.2+dfsg-2ubuntu6.11USN-6167-1
Fixed in:1:7.0+dfsg-7ubuntu2.6USN-6167-1
Fixed in:1:7.2+dfsg-5ubuntu2.2USN-6167-1
qemu-commonUbuntu
Fixed in:2.0.0+dfsg-2ubuntu1.47+esm3USN-6167-1
qemu-guest-agentUbuntu
Fixed in:2.0.0+dfsg-2ubuntu1.47+esm3USN-6167-1
Fixed in:1:2.5+dfsg-5ubuntu10.51+esm2USN-6167-1
Fixed in:1:2.11+dfsg-1ubuntu7.42+esm1USN-6167-1
Fixed in:1:4.2-3ubuntu6.27USN-6167-1
Fixed in:1:6.2+dfsg-2ubuntu6.11USN-6167-1
Fixed in:1:7.0+dfsg-7ubuntu2.6USN-6167-1
Fixed in:1:7.2+dfsg-5ubuntu2.2USN-6167-1
qemu-kvmUbuntu
Fixed in:2.0.0+dfsg-2ubuntu1.47+esm3USN-6167-1
Fixed in:1:2.5+dfsg-5ubuntu10.51+esm2USN-6167-1
Fixed in:1:2.11+dfsg-1ubuntu7.42+esm1USN-6167-1
Fixed in:1:4.2-3ubuntu6.27USN-6167-1
qemu-systemUbuntu
Fixed in:2.0.0+dfsg-2ubuntu1.47+esm3USN-6167-1
Fixed in:1:2.5+dfsg-5ubuntu10.51+esm2USN-6167-1
Fixed in:1:2.11+dfsg-1ubuntu7.42+esm1USN-6167-1
Fixed in:1:4.2-3ubuntu6.27USN-6167-1
Fixed in:1:6.2+dfsg-2ubuntu6.11USN-6167-1
Fixed in:1:7.0+dfsg-7ubuntu2.6USN-6167-1
Fixed in:1:7.2+dfsg-5ubuntu2.2USN-6167-1
qemu-system-aarch64Ubuntu
Fixed in:2.0.0+dfsg-2ubuntu1.47+esm3USN-6167-1
Fixed in:1:2.5+dfsg-5ubuntu10.51+esm2USN-6167-1
qemu-system-armUbuntu
Fixed in:2.0.0+dfsg-2ubuntu1.47+esm3USN-6167-1
Fixed in:1:2.5+dfsg-5ubuntu10.51+esm2USN-6167-1
Fixed in:1:2.11+dfsg-1ubuntu7.42+esm1USN-6167-1
Fixed in:1:4.2-3ubuntu6.27USN-6167-1
Fixed in:1:6.2+dfsg-2ubuntu6.11USN-6167-1
Fixed in:1:7.0+dfsg-7ubuntu2.6USN-6167-1
Fixed in:1:7.2+dfsg-5ubuntu2.2USN-6167-1
qemu-system-commonUbuntu
Fixed in:2.0.0+dfsg-2ubuntu1.47+esm3USN-6167-1
Fixed in:1:2.5+dfsg-5ubuntu10.51+esm2USN-6167-1
Fixed in:1:2.11+dfsg-1ubuntu7.42+esm1USN-6167-1
Fixed in:1:4.2-3ubuntu6.27USN-6167-1
Fixed in:1:6.2+dfsg-2ubuntu6.11USN-6167-1
Fixed in:1:7.0+dfsg-7ubuntu2.6USN-6167-1
Fixed in:1:7.2+dfsg-5ubuntu2.2USN-6167-1
qemu-system-dataUbuntu
Fixed in:1:4.2-3ubuntu6.27USN-6167-1
Fixed in:1:6.2+dfsg-2ubuntu6.11USN-6167-1
Fixed in:1:7.0+dfsg-7ubuntu2.6USN-6167-1
Fixed in:1:7.2+dfsg-5ubuntu2.2USN-6167-1
qemu-system-guiUbuntu
Fixed in:1:4.2-3ubuntu6.27USN-6167-1
Fixed in:1:6.2+dfsg-2ubuntu6.11USN-6167-1
Fixed in:1:7.0+dfsg-7ubuntu2.6USN-6167-1
Fixed in:1:7.2+dfsg-5ubuntu2.2USN-6167-1
qemu-system-mipsUbuntu
Fixed in:2.0.0+dfsg-2ubuntu1.47+esm3USN-6167-1
Fixed in:1:2.5+dfsg-5ubuntu10.51+esm2USN-6167-1
Fixed in:1:2.11+dfsg-1ubuntu7.42+esm1USN-6167-1
Fixed in:1:4.2-3ubuntu6.27USN-6167-1
Fixed in:1:6.2+dfsg-2ubuntu6.11USN-6167-1
Fixed in:1:7.0+dfsg-7ubuntu2.6USN-6167-1
Fixed in:1:7.2+dfsg-5ubuntu2.2USN-6167-1
qemu-system-miscUbuntu
Fixed in:2.0.0+dfsg-2ubuntu1.47+esm3USN-6167-1
Fixed in:1:2.5+dfsg-5ubuntu10.51+esm2USN-6167-1
Fixed in:1:2.11+dfsg-1ubuntu7.42+esm1USN-6167-1
Fixed in:1:4.2-3ubuntu6.27USN-6167-1
Fixed in:1:6.2+dfsg-2ubuntu6.11USN-6167-1
Fixed in:1:7.0+dfsg-7ubuntu2.6USN-6167-1
Fixed in:1:7.2+dfsg-5ubuntu2.2USN-6167-1
qemu-system-ppcUbuntu
Fixed in:2.0.0+dfsg-2ubuntu1.47+esm3USN-6167-1
Fixed in:1:2.5+dfsg-5ubuntu10.51+esm2USN-6167-1
Fixed in:1:2.11+dfsg-1ubuntu7.42+esm1USN-6167-1
Fixed in:1:4.2-3ubuntu6.27USN-6167-1
Fixed in:1:6.2+dfsg-2ubuntu6.11USN-6167-1
Fixed in:1:7.0+dfsg-7ubuntu2.6USN-6167-1
Fixed in:1:7.2+dfsg-5ubuntu2.2USN-6167-1
qemu-system-s390xUbuntu
Fixed in:1:2.5+dfsg-5ubuntu10.51+esm2USN-6167-1
Fixed in:1:2.11+dfsg-1ubuntu7.42+esm1USN-6167-1
Fixed in:1:4.2-3ubuntu6.27USN-6167-1
Fixed in:1:6.2+dfsg-2ubuntu6.11USN-6167-1
Fixed in:1:7.0+dfsg-7ubuntu2.6USN-6167-1
Fixed in:1:7.2+dfsg-5ubuntu2.2USN-6167-1
qemu-system-sparcUbuntu
Fixed in:2.0.0+dfsg-2ubuntu1.47+esm3USN-6167-1
Fixed in:1:2.5+dfsg-5ubuntu10.51+esm2USN-6167-1
Fixed in:1:2.11+dfsg-1ubuntu7.42+esm1USN-6167-1
Fixed in:1:4.2-3ubuntu6.27USN-6167-1
Fixed in:1:6.2+dfsg-2ubuntu6.11USN-6167-1
Fixed in:1:7.0+dfsg-7ubuntu2.6USN-6167-1
Fixed in:1:7.2+dfsg-5ubuntu2.2USN-6167-1
qemu-system-x86Ubuntu
Fixed in:2.0.0+dfsg-2ubuntu1.47+esm3USN-6167-1
Fixed in:1:2.5+dfsg-5ubuntu10.51+esm2USN-6167-1
Fixed in:1:2.11+dfsg-1ubuntu7.42+esm1USN-6167-1
Fixed in:1:4.2-3ubuntu6.27USN-6167-1
Fixed in:1:6.2+dfsg-2ubuntu6.11USN-6167-1
Fixed in:1:7.0+dfsg-7ubuntu2.6USN-6167-1
Fixed in:1:7.2+dfsg-5ubuntu2.2USN-6167-1
qemu-system-x86-microvmUbuntu
Fixed in:1:4.2-3ubuntu6.27USN-6167-1
Fixed in:1:6.2+dfsg-2ubuntu6.11USN-6167-1
qemu-system-x86-xenUbuntu
Fixed in:1:4.2-3ubuntu6.27USN-6167-1
Fixed in:1:6.2+dfsg-2ubuntu6.11USN-6167-1
Fixed in:1:7.0+dfsg-7ubuntu2.6USN-6167-1
Fixed in:1:7.2+dfsg-5ubuntu2.2USN-6167-1
qemu-system-xenUbuntu
Fixed in:1:7.0+dfsg-7ubuntu2.6USN-6167-1
Fixed in:1:7.2+dfsg-5ubuntu2.2USN-6167-1

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorLocal
Attack ComplexityLow
Privileges RequiredLow
User InteractionNone
ScopeChanged

Impact

ConfidentialityNone
IntegrityNone
AvailabilityHigh

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Exploit Intelligence

0.38%probability of exploitation in 30 days
30thpercentile

Low risk: more likely to be exploited than 30% of all known CVEs.

References

Exploit1
Third-Party Advisory1

Related Vulnerabilities

Other CWE-120 (Classic Buffer Overflow) vulnerabilities, ordered by exploit likelihood. View all

CVESeverityCVSSEPSSExploitedFix
CVE-2014-0195Medium6.8100%-Fix
CVE-2017-7269Critical9.8100%KEV-
CVE-2019-11043High8.799%KEV + RansomFix
CVE-2011-4862High10.095%-Fix
CVE-2007-5659High7.894%KEVFix
CVE-2022-3786High7.591%-Fix
Embed a live status badge for CVE-2022-4172
CVE-2022-4172 severity badge

Markdown

[![CVE-2022-4172](https://tridentstack.com/cve/badge/CVE-2022-4172.svg)](https://tridentstack.com/cve/CVE-2022-4172)

HTML

<a href="https://tridentstack.com/cve/CVE-2022-4172"><img src="https://tridentstack.com/cve/badge/CVE-2022-4172.svg" alt="CVE-2022-4172"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2025-04-14.