A NULL pointer dereference issue was found in various system emulators of QEMU. It could occur while performing MMIO r/w operations, in case the respective handler function is not defined. A privileged guest user able to invoke MMIO operation may use this flaw to crash the QEMU process on the host resulting in DoS scenario.
Name: Lei Sun
Created qemu tracking bugs for this issue:
Affects: fedora-all [bug 1853156]
Created xen tracking bugs for this issue:
Affects: fedora-all [bug 1853157]
In Red Hat OpenStack Platform, because the flaw has a lower impact and the fix would require a substantial amount of development, no update will be provided at this time for the RHOSP qemu-kvm-rhev package.