CVE-2021-20257 - log back

CVE-2021-20257 edited at 29 Apr 2021 22:54:48
References
https://www.openwall.com/lists/oss-security/2021/02/25/2
- https://lists.gnu.org/archive/html/qemu-devel/2021-02/msg07428.html
+ https://git.qemu.org/?p=qemu.git;a=commitdiff;h=3de46e6fc489c52c9431a8a832ad8170a7569bd8
CVE-2021-20257 edited at 25 Feb 2021 11:33:12
References
- https://bugzilla.redhat.com/show_bug.cgi?id=1930087
+ https://www.openwall.com/lists/oss-security/2021/02/25/2
- https://lists.gnu.org/archive/html/qemu-devel/2021-02/msg03595.html
+ https://lists.gnu.org/archive/html/qemu-devel/2021-02/msg07428.html
CVE-2021-20257 edited at 22 Feb 2021 11:04:25
Severity
- Unknown
+ Low
Remote
- Unknown
+ Local
Type
- Unknown
+ Denial of service
Description
+ An infinite loop issue was found in the e1000 NIC emulator of the QEMU. It occurs while processing transmit (tx) descriptors in process_tx_desc, if various descriptor fields are initialised with invalid values. A guest may use this flaw to consume CPU cycles on the host resulting in a denial of service (DoS) scenario.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1930087
+ https://lists.gnu.org/archive/html/qemu-devel/2021-02/msg03595.html
CVE-2021-20257 created at 22 Feb 2021 11:03:04
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes