Security Advisory

CVE-2021-20203

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-02-25 19:09:46
Last updated 2024-08-03 17:30:07
Assigner redhat
State PUBLISHED

Description

An integer overflow issue was found in the vmxnet3 NIC emulator of the QEMU for versions up to v5.2.0. It may occur if a guest was to supply invalid values for rx/tx queue size or other NIC parameters. A privileged guest user may use this flaw to crash the QEMU process on the host resulting in DoS scenario.