Security Advisory

CVE-2019-20808

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-31 00:26:39

Last updated 2024-08-05 02:53:09

Assigner mitre

State PUBLISHED

Description

In QEMU 4.1.0, an out-of-bounds read flaw was found in the ATI VGA implementation. It occurs in the ati_cursor_define() routine while handling MMIO write operations through the ati_mm_write() callback. A malicious guest could abuse this flaw to crash the QEMU process, resulting in a denial of service.

← Browse all CVEs View on cve.org ↗