A flaw was found in QEMU. A stack-overflow induced by infinite recursion issue in rtl8139 emulator could lead to DoS. References: https://bugs.launchpad.net/qemu/+bug/1910826 https://lists.gnu.org/archive/html/qemu-devel/2021-03/msg00010.html
Created qemu tracking bugs for this issue: Affects: fedora-all [bug 1933829] Created xen tracking bugs for this issue: Affects: fedora-all [bug 1933828]
Hello Guilherme, > https://lists.gnu.org/archive/html/qemu-devel/2021-03/msg00010.html > The CVE-2021-3419 has been assigned for this issue. * We need to reject/cancel this CVE assignment. * Because above single patch and many other similar patches are being merged upstream via its original series below CVE-2021-3416 QEMU: net: infinite loop in loopback mode may lead to stack overflow -> https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2021-3416 -> https://lists.gnu.org/archive/html/qemu-devel/2021-03/msg00392.html * This series was already assigned CVE-ID => CVE-2021-3416. * We don't want two(or multiple) CVE-IDs for the same issue/series. * Please kindly reject/cancel this CVE => CVE-2021-3419. Thank you.
Hi PJP, CVE-2021-3419 rejected, Mitre was notified and the CVE-2021-3419 page should be marked as rejected/duplicated soon. Also, removed CVE-2021-3419 from alias. Thank you.
*** This bug has been marked as a duplicate of bug 1932827 ***
Statement: This flaw was found to be a duplicate of CVE-2021-3416. Please see https://access.redhat.com/security/cve/CVE-2021-3416 for information about affected products and security errata.