 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| CVE ID: | CVE-2023-3354 |
| Description: | A flaw was found in the QEMU built-in VNC server. When a client connects to the VNC server, QEMU checks whether the current number of connections crosses a certain threshold and if so, cleans up the previous connection. If the previous connection happens to be in the handshake phase and fails, QEMU cleans up the connection again, resulting in a NULL pointer dereference issue. This could allow a remote unauthenticated client to cause a denial of service. |
| Test IDs: | 1.3.6.1.4.1.25623.1.1.2.2023.3153 |
| Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2023-3354 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MURWGXDIF2WTDXV36T6HFJDBL632AO7R/ RHBZ#2216478 https://bugzilla.redhat.com/show_bug.cgi?id=2216478 https://access.redhat.com/security/cve/CVE-2023-3354 https://access.redhat.com/security/cve/CVE-2023-3354 https://lists.debian.org/debian-lts-announce/2024/03/msg00012.html |