Wind River Support Network

HomeDefectsLIN1021-23628
Fixed

LIN1021-23628 : Security Advisory - qemu - CVE-2021-20203

Created: Apr 28, 2026    Updated: Jun 8, 2026
Resolved Date: Jun 8, 2026
Found In Version: 10.21.20.27
Fix Version: 10.21.20.27
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace

Description

An integer overflow issue was found in the vmxnet3 NIC emulator of the QEMU. It may occur if a guest was to supply invalid values for rx/tx queue size or other NIC parameters. A privileged guest user may use this flaw to crash the QEMU process on the host resulting in DoS scenario.

https://lists.gnu.org/archive/html/qemu-devel/2021-01/msg07935.html

CVEs

  • Linkedin
  • Facebook
  • Twitter
  • Youtube