CVE-2022-29694

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2022-29694
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-29694.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-29694
Published
2022-06-02T14:15:50.553Z
Modified
2025-11-20T12:06:31.476994Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

Unicorn Engine v2.0.0-rc7 and below was discovered to contain a NULL pointer dereference via qemuramfree.

References

Affected packages

Git / github.com/unicorn-engine/unicorn

Affected ranges

Type
GIT
Repo
https://github.com/unicorn-engine/unicorn
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
3d3deac5e6d38602b689c4fef5dac004f07a2e63

Affected versions

0.*

0.9

1.*

1.0
1.0-rc1
1.0-rc2
1.0-rc3
1.0.1
1.0.2
1.0.2-rc1
1.0.2-rc2
1.0.2-rc3
1.0.2-rc4
1.0.2-rc5
1.0.2-rc6
1.0.3

2.*

2.0.0-rc1
2.0.0-rc2
2.0.0-rc3
2.0.0-rc4
2.0.0-rc5
2.0.0-rc5.post1
2.0.0-rc6

Database specific

vanir_signatures

[
    {
        "target": {
            "function": "memory_map",
            "file": "qemu/softmmu/memory.c"
        },
        "signature_version": "v1",
        "digest": {
            "length": 323.0,
            "function_hash": "57197218022180332029012659235852810667"
        },
        "source": "https://github.com/unicorn-engine/unicorn/commit/3d3deac5e6d38602b689c4fef5dac004f07a2e63",
        "deprecated": false,
        "signature_type": "Function",
        "id": "CVE-2022-29694-08517c98"
    },
    {
        "target": {
            "file": "qemu/exec.c"
        },
        "signature_version": "v1",
        "digest": {
            "line_hashes": [
                "308600573447663130433121437942955333865",
                "109083104320806874996481558287097527949",
                "177410210465881187526417630355072942488",
                "15828335982198465697662675026334678390",
                "133747491020609123376309782053041098215",
                "271588029713434337005423360516648859712",
                "96393868979709539864767097434896495845",
                "254046342428748865190149587225210946197",
                "277246730259502992074212413990283741971",
                "8611105095302960023874188317667841036",
                "259061879287453919374552563417197130907",
                "214446408388160387107947248898116668869",
                "298073106364058328762962587426647663935",
                "332241021101354056092356743740119301149",
                "140044777583130453279366797963728285028",
                "294602386746962673904987243908768630237",
                "187174703570556242760418678188724567238",
                "241775393584919973585779827867084316522",
                "340195396235112984491756103734379960363",
                "167926962073368270654022756838995677099",
                "164863463603398158758508628729653642668",
                "207367294853913214992614275436944345298",
                "208868835204625528500129709717050125346",
                "25902312793650850382878038854681794414",
                "11156744294129031396554566495903143744",
                "95789109536063639014345968372153420675",
                "317868911501796253924554182450748787451",
                "185956423160998449908816407642247296528"
            ],
            "threshold": 0.9
        },
        "source": "https://github.com/unicorn-engine/unicorn/commit/3d3deac5e6d38602b689c4fef5dac004f07a2e63",
        "deprecated": false,
        "signature_type": "Line",
        "id": "CVE-2022-29694-089ea41c"
    },
    {
        "target": {
            "file": "qemu/softmmu/memory.c"
        },
        "signature_version": "v1",
        "digest": {
            "line_hashes": [
                "145234166717582143871419400829935356137",
                "109857069700405777429143447568146911127",
                "25266202286546595568419732596259792578",
                "142830589795001268889067779588170467908",
                "336901335988289709413227692155086619882",
                "94539448328649383788159985444387401928",
                "172573637811855442352101868234042473226",
                "142830589795001268889067779588170467908"
            ],
            "threshold": 0.9
        },
        "source": "https://github.com/unicorn-engine/unicorn/commit/3d3deac5e6d38602b689c4fef5dac004f07a2e63",
        "deprecated": false,
        "signature_type": "Line",
        "id": "CVE-2022-29694-267ee155"
    },
    {
        "target": {
            "function": "ram_block_add",
            "file": "qemu/exec.c"
        },
        "signature_version": "v1",
        "digest": {
            "length": 686.0,
            "function_hash": "127853111933722632474292464332709210952"
        },
        "source": "https://github.com/unicorn-engine/unicorn/commit/3d3deac5e6d38602b689c4fef5dac004f07a2e63",
        "deprecated": false,
        "signature_type": "Function",
        "id": "CVE-2022-29694-45d6cbf8"
    },
    {
        "target": {
            "file": "tests/unit/test_mem.c"
        },
        "signature_version": "v1",
        "digest": {
            "line_hashes": [
                "178790017841571358465422271895205079514",
                "141057112516930555793303917271725554801",
                "153653510411816242079289134975402976538",
                "297662366214489317639320460317614868332",
                "60523143183956324176886407903482117536"
            ],
            "threshold": 0.9
        },
        "source": "https://github.com/unicorn-engine/unicorn/commit/3d3deac5e6d38602b689c4fef5dac004f07a2e63",
        "deprecated": false,
        "signature_type": "Line",
        "id": "CVE-2022-29694-4cedb5cc"
    },
    {
        "target": {
            "file": "qemu/include/qemu/atomic.h"
        },
        "signature_version": "v1",
        "digest": {
            "line_hashes": [
                "84756660637316240482335271412014678859",
                "93803503311625084680956904611614941116",
                "252618944303880664957082649854413768918",
                "297068215911332262044454794381811974581",
                "337735456836338762613973218636976093869",
                "60666660349281040023325530943781299532"
            ],
            "threshold": 0.9
        },
        "source": "https://github.com/unicorn-engine/unicorn/commit/3d3deac5e6d38602b689c4fef5dac004f07a2e63",
        "deprecated": false,
        "signature_type": "Line",
        "id": "CVE-2022-29694-5939f3ab"
    },
    {
        "target": {
            "function": "qemu_ram_alloc_from_ptr",
            "file": "qemu/exec.c"
        },
        "signature_version": "v1",
        "digest": {
            "length": 540.0,
            "function_hash": "302865556006637554167031222941344750476"
        },
        "source": "https://github.com/unicorn-engine/unicorn/commit/3d3deac5e6d38602b689c4fef5dac004f07a2e63",
        "deprecated": false,
        "signature_type": "Function",
        "id": "CVE-2022-29694-61bdfc35"
    },
    {
        "target": {
            "function": "memory_map_ptr",
            "file": "qemu/softmmu/memory.c"
        },
        "signature_version": "v1",
        "digest": {
            "length": 362.0,
            "function_hash": "287343874688784754573181562434692864351"
        },
        "source": "https://github.com/unicorn-engine/unicorn/commit/3d3deac5e6d38602b689c4fef5dac004f07a2e63",
        "deprecated": false,
        "signature_type": "Function",
        "id": "CVE-2022-29694-f73a8ee9"
    }
]