CVE-2021-20257 log
Source |
|
Severity | Low |
Remote | No |
Type | Denial of service |
Description | An infinite loop issue was found in the e1000 NIC emulator of the QEMU. It occurs while processing transmit (tx) descriptors in process_tx_desc, if various descriptor fields are initialised with invalid values. A guest may use this flaw to consume CPU cycles on the host resulting in a denial of service (DoS) scenario. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-1308 | qemu | 5.2.0-3 | Medium | Vulnerable |
References |
---|
https://www.openwall.com/lists/oss-security/2021/02/25/2 https://lists.gnu.org/archive/html/qemu-devel/2021-02/msg07428.html |