Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2020-27661: Bug#972864: qemu: CVE-2020-27661: divide by zero in dwc2_handle_packet() in hw/usb/hcd-dwc2.c

A divide-by-zero issue was found in dwc2_handle_packet in hw/usb/hcd-dwc2.c in the hcd-dwc2 USB host controller emulation of QEMU. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service.

CVE
Open in Source
#vulnerability#debian#dos#git

Source: qemu Version: 1:5.1+dfsg-4 Severity: important Tags: security upstream Forwarded: https://lists.nongnu.org/archive/html/qemu-devel/2020-10/msg04263.html X-Debbugs-Cc: car…@debian.org, Debian Security Team t…@security.debian.org

Hi,

The following vulnerability was published for qemu.

CVE-2020-27661[0]: | divide by zero in dwc2_handle_packet() in hw/usb/hcd-dwc2.c

If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2020-27661 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27661 [1] https://lists.nongnu.org/archive/html/qemu-devel/2020-10/msg04263.html [2] https://git.qemu.org/?p=qemu.git;a=commit;h=bea2a9e3e00b275dc40cfa09c760c715b8753e03

Please adjust the affected versions in the BTS as needed.

Regards, Salvatore

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE