An assertion-failure flaw was found in Qemu prior to 2.10.1, in the Network Block Device (NBD) server's initial connection negotiation, where the I/O coroutine was undefined. This could crash the qemu-nbd server if a client sent unexpected data during connection negotiation. A remote user or process could use this flaw to crash the qemu-nbd server resulting in denial of service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
qemu qemu |
||
redhat openstack 7.0 |
||
redhat openstack 6.0 |
||
redhat virtualization 4.0 |
||
redhat openstack 10 |
||
redhat openstack 9 |
||
redhat openstack 8 |
||
redhat openstack 11 |
||
redhat virtualization 3.0 |