An integer overflow issue was found in the AMD PC-Net II NIC emulation in QEMU. It could occur while receiving packets, if the size value was greater than INT_MAX. Such overflow would lead to stack buffer overflow issue. A user inside guest could use this flaw to crash the QEMU process resulting in DoS.
Qemu emulator built with the AMD PC-Net II (Am79C970A) emulation support is vulnerable to an integer overflow, which could lead to buffer overflow issue. It could occur when receiving packets over the network.
A user inside guest could use this flaw to crash the Qemu process resulting in DoS.
Name: Daniel Shapira (Twistlock), Arash Tohidi
Created qemu tracking bugs for this issue:
Affects: fedora-all [bug 1636775]
Created xen tracking bugs for this issue:
Affects: fedora-all [bug 1636776]
*** Bug 1613561 has been marked as a duplicate of this bug. ***