An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Block (TRB) Ring. This flaw allows a privileged guest user to hang the QEMU process on the host, resulting in a denial of service.
[
{
"vendor": "n/a",
"product": "QEMU",
"versions": [
{
"version": "QEMU 6.1.50",
"status": "affected"
}
]
}
]