qemu is vulnerable to Denial of Service (DoS) attacks. The vulnerability exists in the nvme_directive_receive
function in the hw/nvme/ctrl.c
file. The function is responsible for receiving a directive from an NVMe controller. The vulnerability occurs when the function tries to access a NULL pointer. This can cause QEMU to crash.
CPE | Name | Operator | Version |
---|---|---|---|
qemu:sid | eq | 1:5.1+dfsg-4+b2 | |
qemu:sid | eq | 1:5.1+dfsg-4 | |
qemu:sid | eq | 1:5.1+dfsg-4+b1 | |
qemu:sid | eq | 1:5.1+dfsg-4+b2 | |
qemu:sid | eq | 1:5.1+dfsg-4 | |
qemu:sid | eq | 1:5.1+dfsg-4+b1 |