Guest driver might execute HW commands when shared buffers are not yet allocated, potentially leading to a use-after-free condition. Upstream patch: https://lists.nongnu.org/archive/html/qemu-devel/2022-04/msg00273.html
Created qemu tracking bugs for this issue: Affects: fedora-all [bug 2069627]
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2022-1050
This is yet to be merged upstream: https://lists.nongnu.org/archive/html/qemu-devel/2022-12/msg00943.html
Hi. This appears to have been merged a few days later :) https://gitlab.com/qemu-project/qemu/-/commit/31c4b6fb0293e359f9ef8a61892667e76eea4c99