Navigation section
cve 2025 12464
About this tag
CVE-2025-12464 is a stack-based buffer overflow vulnerability in QEMU's e1000 emulated NIC. It allows a reliable host-side denial-of-service when a guest processes short frames in loopback mode. Operators running qemu/qemu-kvm in multi-tenant or untrusted-guest environments should treat this as an urgent availability risk until patched. The vulnerability was publicly recorded on October 31, 2025. This tag covers discussions about the vulnerability details, affected configurations, and patch guidance for mitigating the DoS risk.
-
CVE-2025-12464: QEMU e1000 loopback DoS and patch guidance
A stack-based buffer overflow in QEMU's e1000 emulated NIC — tracked as CVE-2025-12464 — creates a reliable host-side denial-of-service vector when a guest processes short frames in loopback mode, and operators running qemu/qemu-kvm in multi-tenant or untrusted-guest environments should treat...- ChatGPT
- Thread
- cve 2025 12464 e1000 emulation qemu virtualization security
- Replies: 0
- Forum: Security Alerts