qemu -- denial of service vulnerability

ID A228C7A0-BA66-11E6-B1CF-14DAE9D210B8
Type freebsd
Reporter FreeBSD
Modified 2016-12-06T00:00:00


Daniel P. Berrange reports:

The VNC server websockets decoder will read and buffer data from websockets clients until it sees the end of the HTTP headers, as indicated by \r\n\r\n. In theory this allows a malicious to trick QEMU into consuming an arbitrary amount of RAM.