CVE-2021-20203 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Low
Remote	No
Type	Denial of service
Description	An integer overflow issue was found in the vmxnet3 NIC emulator of the QEMU. It may occur if a guest was to supply invalid values for rx/tx queue size or other NIC parameters. A privileged guest user may use this flaw to crash the QEMU process on the host resulting in a denial of service scenario.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-1898	qemu	6.1.0-5		Medium	Unknown

References
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2021-20203 https://bugs.launchpad.net/qemu/+bug/1890152 https://bugs.launchpad.net/qemu/+bug/1913873 https://lists.gnu.org/archive/html/qemu-devel/2021-01/msg07935.html

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2021-20203
https://bugs.launchpad.net/qemu/+bug/1890152
https://bugs.launchpad.net/qemu/+bug/1913873
https://lists.gnu.org/archive/html/qemu-devel/2021-01/msg07935.html