Description

A flaw was found in QEMU. An assertion failure was present in the update_sctp_checksum() function in hw/net/net_tx_pkt.c when trying to calculate the checksum of a short-sized fragmented packet. This flaw allows a malicious guest to crash QEMU and cause a denial of service condition.

INFO

Published Date :

2024-04-10T14:32:02.343Z

Last Modified :

2025-11-08T06:49:51.437Z

Source :

redhat
AFFECTED PRODUCTS

The following products are affected by CVE-2024-3567 vulnerability.

Vendors Products
Qemu
  • Qemu
Redhat
  • Advanced Virtualization
  • Enterprise Linux

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact