| Titel | CVE-2020-27617 QEMU |
|---|
| Beschreibung | An assert(3) failure issue was found in the networking helper functions of QEMU. It could occur in the eth_get_gso_type() routine, if a packet does not have a valid networking L3 protocol (ex. IPv4, IPv6) value. A guest user may use this flaw to crash the QEMU process on the host resulting in DoS scenario. |
|---|
| Quelle | ⚠️ https://seclists.org/oss-sec/2020/q4/86 |
|---|
| Benutzer | CSieberg (UID 13359) |
|---|
| Einreichung | 04.11.2020 13:06 (vor 6 Jahren) |
|---|
| Moderieren | 04.11.2020 13:23 (17 minutes later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 164279 [QEMU Networking Helper eth_get_gso_type Denial of Service] |
|---|
| Punkte | 16 |
|---|