oss_write in audio/ossaudio.c in QEMU before 5.0.0 mishandles a buffer position. CREATE(Triage):(User=admin) [CVE-2020-14415|https://nvd.nist.gov/vuln/detail/CVE-2020-14415]