Qemu has integer overflows because IOReadHandler and its associated functions use a signed integer data type for a size value. https://nvd.nist.gov/vuln/detail/CVE-2018-18438