nvd-json-data-feeds/CVE-2024/CVE-2024-244xx/CVE-2024-24474.json

{
  "id": "CVE-2024-24474",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2024-02-20T18:15:52.463",
  "lastModified": "2024-06-10T16:15:12.127",
  "vulnStatus": "Awaiting Analysis",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in esp_do_nodma in hw/scsi/esp.c because of an underflow of async_len."
    },
    {
      "lang": "es",
      "value": "QEMU anterior a 8.2.0 tiene un desbordamiento de n\u00famero entero y un desbordamiento de b\u00fafer resultante, a trav\u00e9s de un comando TI cuando una longitud de transferencia esperada que no es DMA es menor que la longitud de los datos FIFO disponibles. Esto ocurre en esp_do_nodma en hw/scsi/esp.c debido a un desbordamiento insuficiente de async_len."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://gist.github.com/1047524396/5ce07b9d387095c276b1cd234ae5615e",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://github.com/qemu/qemu/commit/77668e4b9bca03a856c27ba899a2513ddf52bb52",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://gitlab.com/qemu-project/qemu/-/issues/1810",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://security.netapp.com/advisory/ntap-20240510-0012/",
      "source": "cve@mitre.org"
    }
  ]
}
Auto-Update: 2024-02-20T19:00:39.502142+00:00 2024-02-20 19:00:43 +00:00			`{`
			`"id": "CVE-2024-24474",`
			`"sourceIdentifier": "cve@mitre.org",`
			`"published": "2024-02-20T18:15:52.463",`
Auto-Update: 2024-06-10T18:00:18.698264+00:00 2024-06-10 18:03:10 +00:00			`"lastModified": "2024-06-10T16:15:12.127",`
Auto-Update: 2024-02-20T21:00:31.389455+00:00 2024-02-20 21:00:35 +00:00			`"vulnStatus": "Awaiting Analysis",`
Auto-Update: 2024-07-14T02:00:17.787041+00:00 2024-07-14 02:06:08 +00:00			`"cveTags": [],`
Auto-Update: 2024-02-20T19:00:39.502142+00:00 2024-02-20 19:00:43 +00:00			`"descriptions": [`
			`{`
			`"lang": "en",`
Auto-Update: 2024-02-21T03:00:24.174990+00:00 2024-02-21 03:00:27 +00:00			`"value": "QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in esp_do_nodma in hw/scsi/esp.c because of an underflow of async_len."`
Auto-Update: 2024-04-04T08:42:25.815847+00:00 2024-04-04 08:46:00 +00:00			`},`
			`{`
			`"lang": "es",`
			`"value": "QEMU anterior a 8.2.0 tiene un desbordamiento de n\u00famero entero y un desbordamiento de b\u00fafer resultante, a trav\u00e9s de un comando TI cuando una longitud de transferencia esperada que no es DMA es menor que la longitud de los datos FIFO disponibles. Esto ocurre en esp_do_nodma en hw/scsi/esp.c debido a un desbordamiento insuficiente de async_len."`
Auto-Update: 2024-02-20T19:00:39.502142+00:00 2024-02-20 19:00:43 +00:00			`}`
			`],`
			`"metrics": {},`
			`"references": [`
			`{`
			`"url": "https://gist.github.com/1047524396/5ce07b9d387095c276b1cd234ae5615e",`
			`"source": "cve@mitre.org"`
			`},`
			`{`
			`"url": "https://github.com/qemu/qemu/commit/77668e4b9bca03a856c27ba899a2513ddf52bb52",`
			`"source": "cve@mitre.org"`
			`},`
			`{`
			`"url": "https://gitlab.com/qemu-project/qemu/-/issues/1810",`
			`"source": "cve@mitre.org"`
Auto-Update: 2024-06-10T18:00:18.698264+00:00 2024-06-10 18:03:10 +00:00			`},`
			`{`
			`"url": "https://security.netapp.com/advisory/ntap-20240510-0012/",`
			`"source": "cve@mitre.org"`
Auto-Update: 2024-02-20T19:00:39.502142+00:00 2024-02-20 19:00:43 +00:00			`}`
			`]`
			`}`