---

CVE-2021-4206 - log back

CVE-2021-4206 edited at 11 May 2022 08:31:17
Remote	- Unknown + Local
Type	- Unknown + Arbitrary code execution

CVE-2021-4206 created at 11 May 2022 08:30:34
Severity	+ High
Remote	+ Unknown
Type	+ Unknown
Description	+ An integer overflow in the cursor_alloc() function of the QXL display device emulation can lead to the allocation of a small cursor object followed by a subsequent heap-based buffer overflow.
References	+ https://gitlab.com/qemu-project/qemu/-/commit/fa892e9a + https://starlabs.sg/advisories/21-4206
Notes