QEMU (aka Quick Emulator) built to use 'address_space_translate' to map an address to a MemoryRegionSection is vulnerable to an OOB r/w access issue. It could occur while doing pci_dma_read/write calls. Affects QEMU versions >= 1.6.0 and <= 2.3.1. A privileged user inside guest could use this flaw to crash the guest instance resulting in DoS.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
qemu qemu 2.0.0 |
||
qemu qemu 2.0.2 |
||
qemu qemu 2.1.3 |
||
qemu qemu 2.1.0 |
||
qemu qemu 1.6.0 |
||
qemu qemu 2.2.1 |
||
qemu qemu 2.3.1 |
||
qemu qemu 2.1.1 |
||
qemu qemu 1.7.1 |
||
qemu qemu 2.3.0 |
||
qemu qemu 1.6.2 |
||
qemu qemu 1.6.1 |
||
qemu qemu 2.2.0 |
||
qemu qemu 2.1.2 |