Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In QEMU 4.1.0, an out-of-bounds read flaw was found in the ATI VGA implementation. It occurs in the ati_cursor_define() routine while handling MMIO write operations through the ati_mm_write() callback. A malicious guest could abuse this flaw to crash the QEMU process, resulting in a denial of service.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
QEMU 缓冲区错误漏洞
Vulnerability Description
QEMU(Quick Emulator)是法国法布里斯-贝拉(Fabrice Bellard)个人开发者的一套模拟处理器软件。该软件具有速度快、跨平台等特点。 QEMU 4.1.0 存在安全漏洞,该漏洞源于ATI VGA实现中发现了一个越界读取缺陷。当通过ati mm write()回调处理MMIO写操作时,它发生在ati游标定义()例程中。恶意客户机可能会滥用此缺陷使QEMU进程崩溃,从而导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A