You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
qemu security
About this tag
The qemu security tag covers vulnerabilities in the QEMU machine emulator and virtualizer that can be exploited from within a guest VM to affect the host. Recent discussions include CVE-2021-20255, a denial-of-service bug in the eepro100 network device emulation that causes infinite recursion and stack overflow, and CVE-2024-8354, an assertion failure in USB handling that crashes the QEMU process. Both issues allow unprivileged guest users to trigger host-level denial-of-service, highlighting risks to virtualization environments. Administrators should apply patches promptly to maintain host availability and security.
A subtle bug in QEMU’s eepro100 network device emulator — tracked as CVE-2021-20255 — can drive the host-side QEMU process into an infinite recursion and stack overflow when the guest triggers a specific DMA reentry condition, allowing a guest user or process to exhaust CPU cycles or crash the...
A reachable assertion in QEMU’s USB handling (usb_ep_get in hw/net/core.c) can be triggered from an unprivileged guest and crash the host-side QEMU process, producing a host-level denial-of-service that administrators must treat as a high-availability risk and remediate immediately.
Background /...