CVE-2022-50145

The CVE-2022-50145 issue affects the Linux kernel’s dmaengine sf-pdma path. A data race allows multiple threads to rewrite a DMA channel descriptor, risking NULL pointer dereference and OOPS/hang when device_prep_dma_memcpy() is called concurrently. The vulnerability manifests as a multithreading...

Qualcomm Chipsets 资源管理错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A resource management error vulnerability exists in Qualcomm Chipsets that originates from a memory corruption that occurs when processing file descriptors...

An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. This issue occurs while processing transmits (tx) descriptors in process_tx_desc if various descriptor fields are initialized with invalid values. This flaw allows a guest to consume CPU cycles on the host resulting in a denial of service. The highest threat from this vulnerability is to system availability.

...

AZL-9068 CVE-2021-20257 affecting package qemu for versions less than 6.2.0-2

An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. This issue occurs while processing transmits tx descriptors in processtxdesc if various descriptor fields are initialized with invalid values. This flaw allows a guest to consume CPU cycles on the host, resulting in a denial o...

DEBIAN-CVE-2016-1981

QEMU aka Quick Emulator built with the e1000 NIC emulation support is vulnerable to an infinite loop issue. It could occur while processing data via transmit or receive descriptors, provided the initial receive/transmit descriptor head TDH/RDH is set outside the allocated descriptor buffer. A...