When a client connects to the VNC server, QEMU will check whether the current number of connections is greater than the limitation. If so, it will clean up the previous connection. If that connection happens to be in the handshake phase and fails, QEMU will clean up the connection again, which will result in a NULL pointer dereference issue. A remote unauthenticated user could use this flaw to cause a denial of service.
Created qemu tracking bugs for this issue: Affects: fedora-all [bug 2218149]
Upstream patch: https://lists.nongnu.org/archive/html/qemu-devel/2023-07/msg01014.html
Patch v2: https://lists.nongnu.org/archive/html/qemu-devel/2023-07/msg02668.html
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:5094 https://access.redhat.com/errata/RHSA-2023:5094
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions Via RHSA-2023:5239 https://access.redhat.com/errata/RHSA-2023:5239
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:5264 https://access.redhat.com/errata/RHSA-2023:5264
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions Red Hat Enterprise Linux 8.2 Telecommunications Update Service Via RHSA-2023:5587 https://access.redhat.com/errata/RHSA-2023:5587
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Via RHSA-2023:5796 https://access.redhat.com/errata/RHSA-2023:5796
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Extended Update Support Via RHSA-2023:6227 https://access.redhat.com/errata/RHSA-2023:6227
Have you ever heard of PaybyPlateMa? It is a new and innovative way to pay bills online. Instead of sending your invoice by mail. https://paybyplatema.site/
i have fixed this bug on my website https://lowescomsurvey.online/
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Extended Update Support Via RHSA-2024:0404 https://access.redhat.com/errata/RHSA-2024:0404