CVE-2021-20257 log

Source
Severity Low
Remote No
Type Denial of service
Description
An infinite loop issue was found in the e1000 NIC emulator of the QEMU. It occurs while processing transmit (tx) descriptors in process_tx_desc, if various descriptor fields are initialised with invalid values. A guest may use this flaw to consume CPU cycles on the host resulting in a denial of service (DoS) scenario.
Group Package Affected Fixed Severity Status Ticket
AVG-1308 qemu 5.2.0-3 Medium Vulnerable
References
https://www.openwall.com/lists/oss-security/2021/02/25/2
https://lists.gnu.org/archive/html/qemu-devel/2021-02/msg07428.html