CVE-2020-15859 log

Source
Severity Low
Remote No
Type Denial of service
Description
A use-after-free issue was found in the INTEL 82574 NIC (e1000e) emulator of the QEMU. It could while sending packets if the guest user set the packet data address to e1000e's MMIO address. A guest user/process could use this flaw to crash the QEMU process on the host resulting in a denial of service (DoS) scenario.
Group Package Affected Fixed Severity Status Ticket
AVG-1898 qemu 6.1.0-5 Medium Vulnerable
References
https://www.openwall.com/lists/oss-security/2020/07/21/3
https://bugs.launchpad.net/qemu/+bug/1886362
https://gitlab.com/qemu-project/qemu/-/issues/556
https://lists.gnu.org/archive/html/qemu-devel/2020-07/msg06147.html