In QEMU 4.1.0, an out-of-bounds read flaw was found in the ATI VGA implementation. It occurs in the ati_cursor_define() routine while handling MMIO write operations through the ati_mm_write() callback. A malicious guest could abuse this flaw to crash the QEMU process, resulting in a denial of service. CREATE(Triage):(User=admin) [CVE-2019-20808|https://nvd.nist.gov/vuln/detail/CVE-2019-20808]
