Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
hw/net/xgmac.c in the XGMAC Ethernet controller in QEMU before 07-20-2020 has a buffer overflow. This occurs during packet transmission and affects the highbank and midway emulated machines. A guest user or process could use this flaw to crash the QEMU process on the host, resulting in a denial of service or potential privileged code execution. This was fixed in commit 5519724a13664b43e225ca05351c60b4468e4555.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
QEMU 缓冲区错误漏洞
Vulnerability Description
QEMU(Quick Emulator)是法国法布里斯-贝拉(Fabrice Bellard)软件开发者的一套模拟处理器软件。该软件具有速度快、跨平台等特点。 QEMU 07-20-2020之前版本中的XGMAC Ethernet controller中的hw/net/xgmac.c文件存在缓冲区错误漏洞。攻击者可利用该漏洞造成主机上的QEMU进程崩溃,导致拒绝服务或在主机系统上运行代码。
CVSS Information
N/A
Vulnerability Type
N/A