Lucene search

K
osvGoogleOSV:CVE-2020-27821
HistoryDec 08, 2020 - 10:15 p.m.

CVE-2020-27821

2020-12-0822:15:18
Google
osv.dev
10
qemu
memory management
out-of-bounds write
msi-x table
mmio operations
denial of service

AI Score

6.2

Confidence

Low

EPSS

0

Percentile

5.1%

A flaw was found in the memory management API of QEMU during the initialization of a memory region cache. This issue could lead to an out-of-bounds write access to the MSI-X table while performing MMIO operations. A guest user may abuse this flaw to crash the QEMU process on the host, resulting in a denial of service. This flaw affects QEMU versions prior to 5.2.0.