The vulnerability of the QEMU hardware emulation software, which allows a hacker to trigger a service failure

The vulnerability in the hw/virtio/virtio.c module of the QEMU virtualized hardware device support mechanism is caused by buffer overflow. Exploiting this vulnerability allows an attacker to cause a service failure by sending large amounts of data to the tuntap or macvtap interfaces when the buff...

qemu: virtio: out-of-bounds buffer write on state load with invalid config_len

Heap-based buffer overflow in the virtioload function in hw/virtio/virtio.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted config length in a savevm image...