CVE-2021-20257 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Low
Remote	No
Type	Denial of service
Description	An infinite loop issue was found in the e1000 NIC emulator of the QEMU. It occurs while processing transmit (tx) descriptors in process_tx_desc, if various descriptor fields are initialised with invalid values. A guest may use this flaw to consume CPU cycles on the host resulting in a denial of service (DoS) scenario.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-1308	qemu	5.2.0-3		Medium	Vulnerable

References
https://www.openwall.com/lists/oss-security/2021/02/25/2 https://lists.gnu.org/archive/html/qemu-devel/2021-02/msg07428.html