CVE-2021-3416 log

Source
Severity Low
Remote No
Type Denial of service
Description
A potential stack overflow via infinite loop issue was found in various NIC emulators of QEMU. The issue occurs in loopback mode of a NIC wherein reentrant DMA checks get bypassed. A guest user/process may use this flaw to consume CPU cycles or crash the QEMU process on the host resulting in a denial of service (DoS) scenario.
Group Package Affected Fixed Severity Status Ticket
AVG-1308 qemu 5.2.0-4 Medium Vulnerable
References
https://bugzilla.redhat.com/show_bug.cgi?id=1932827
https://lists.gnu.org/archive/html/qemu-devel/2021-02/msg07431.html
https://access.redhat.com/security/cve/CVE-2021-3416