Lucene search
Veracode Vulnerability DatabaseVERACODE:29956HistoryApr 11, 2021 - 12:02 p.m.
Denial Of Service (DoS)
2021-04-1112:02:40
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.001 Low
EPSS
Percentile
19.0%
qemu is vulnerable to denial of service (DoS).A stack overflow via an infinite recursion vulnerability was found in the eepro100 i8255x device emulator of QEMU. This issue occurs while processing controller commands due to a DMA reentry issue. This flaw allows a guest user or process to consume CPU cycles or crash the QEMU process on the host, resulting in a denial of service.
References
bugzilla.redhat.com/show_bug.cgi?id=1930646
lists.debian.org/debian-lts-announce/2021/04/msg00009.html
ruhr-uni-bochum.sciebo.de/s/NNWP2GfwzYKeKwE?path=%2Feepro100_stackoverflow1
security-tracker.debian.org/tracker/CVE-2021-20255
security.netapp.com/advisory/ntap-20210507-0003/
www.openwall.com/lists/oss-security/2021/02/25/1
Related
ubuntucve
ubuntucve
CVE-2021-20255
2021-03-09 00:00:00
redhatcve
redhatcve
CVE-2021-20255
2021-02-19 18:03:00
cbl_mariner
cbl_mariner
CVE-2021-20255 affecting package qemu-kvm 4.2.0-48
2021-04-06 23:50:33
CVE-2021-20255 affecting package qemu for versions less than 6.2.0-2
2022-06-03 17:54:21
nvd
nvd
CVE-2021-20255
2021-03-09 20:15:13
prion
prion
Stack overflow
2021-03-09 20:15:00
debiancve
debiancve
CVE-2021-20255
2021-03-09 20:15:13
cve
cve
CVE-2021-20255
2021-03-09 20:15:13
alpinelinux
alpinelinux
CVE-2021-20255
2021-03-09 20:15:13
cvelist
cvelist
CVE-2021-20255
2021-03-09 19:14:05
nessus
nessus
EulerOS Virtualization 2.9.0 : qemu (EulerOS-SA-2022-1618)
2022-05-05 00:00:00
EulerOS Virtualization 2.9.1 : qemu (EulerOS-SA-2022-1595)
2022-05-05 00:00:00
SUSE SLES12 Security Update : qemu (SUSE-SU-2021:3575-1)
2021-10-29 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2022-1595)
2022-05-05 00:00:00
Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2022-1618)
2022-05-05 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:2858-1)
2021-08-29 00:00:00
suse
suse
Security update for qemu (moderate)
2021-08-20 00:00:00
Security update for qemu (moderate)
2021-08-27 00:00:00
Security update for qemu (important)
2021-11-04 00:00:00
debian
debian
[SECURITY] [DLA 2623-1] qemu security update
2021-04-10 21:21:02
osv
osv
qemu - security update
2021-04-10 00:00:00