0.001 Low
EPSS
Percentile
31.2%
qemu is vulnerable to denial of service. The vulnerability exists due to a heap-based buffer overflow via a double fetch of guest controlled values cursor->header.width and cursor->header.height which causes an application crash.
cursor->header.width
cursor->header.height
bugzilla.redhat.com/show_bug.cgi?id=2036966
lists.debian.org/debian-lts-announce/2022/09/msg00008.html
security-tracker.debian.org/tracker/CVE-2021-4207
security.gentoo.org/glsa/202208-27
starlabs.sg/advisories/21-4207/
www.debian.org/security/2022/dsa-5133