An integer overflow was found in the QEMU implementation of VMWare's paravirtual RDMA device. It could occur while handling a "PVRDMA_REG_DSRHIGH" write from the guest due to improper input validation. A privileged guest user could use this flaw to make QEMU allocate a large amount of memory, resulting in a denial of service.
An integer overflow was found in the QEMU implementation of VMWare's paravirtual RDMA device. It could occur while handling a "PVRDMA_REG_DSRHIGH" write from the guest due to improper input validation. A privileged guest user could use this flaw to make QEMU allocate a large amount of memory, resulting in a denial of service.
https://bugzilla.redhat.com/show_bug.cgi?id=1973349