An information disclosure vulnerability was found in the virtio vhost-user GPU device (vhost-user-gpu) of QEMU. The flaw exists in virgl_cmd_get_capset_info() in contrib/vhost-user-gpu/virgl.c and could occur due to the read of uninitialized memory. A malicious guest could exploit this issue to leak memory from the host. Patch series: https://lists.nongnu.org/archive/html/qemu-devel/2021-05/msg04536.html Memory disclosure in virgl_cmd_get_capset_info() in virgl.c: https://lists.nongnu.org/archive/html/qemu-devel/2021-05/msg04539.html
Created qemu tracking bugs for this issue: Affects: fedora-all [bug 1959053]
Statement: This issue does not affect the versions of `qemu-kvm` as shipped with Red Hat Enterprise Linux 6, 7 and 8, as Virgl was not enabled in these versions. Support for Virgl was enabled as technical preview in Red Hat Enterprise Linux Advanced Virtualization 8.2, and later disabled in Red Hat Enterprise Linux Advanced Virtualization 8.3.
Upstream commit: https://gitlab.com/qemu-project/qemu/-/commit/121841b2