Vulnerabilities

CVE-2019-20808

by Fred · 30/12/2020

In QEMU 4.1.0, an out-of-bounds read flaw was found in the ATI VGA implementation. It occurs in the ati_cursor_define() routine while handling MMIO write operations through the ati_mm_write() callback. A malicious guest could abuse this flaw to crash the QEMU process, resulting in a denial of service.

Date published : 2020-12-30

https://security.netapp.com/advisory/ntap-20210205-0003/

https://bugzilla.redhat.com/show_bug.cgi?id=1841136

Similar

Tags: Cybersecurity Alert