VDB
DEBIAN-CVE-2020-16092
DEBIAN-CVE-2020-16092
PUBLISHED
CVSS 3.799999952316284 LOW
In QEMU through 5.0.0, an assertion failure can occur in the network packet processing. This issue affects the e1000e and vmxnet3 network devices. A malicious guest user/process could use this flaw to abort the QEMU process on the host, resulting in a denial of service condition in net_tx_pkt_add_raw_fragment in hw/net/net_tx_pkt.c.
Risk Scores
CVSS 3.1
3.799999952316284
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | qemu | 0, 0, 0 |
| Debian:13 | qemu | 0, 0, 0 |
| Debian:12 | qemu | 0, 0, 0 |
| Debian:14 | qemu | 0, 0, 0 |
Timeline
- Aug 11, 2020 CVE Published
- Apr 28, 2026 CVE Updated