CVE-2012-0029
EPSS 1.0%xen-qemu-dm-4.0 - buffer overflow
Published: 1/27/2012Modified: 4/28/2026
Description
Heap-based buffer overflow in the process_tx_desc function in the e1000 emulation (hw/e1000.c) in qemu-kvm 0.12, and possibly other versions, allows guest OS users to cause a denial of service (QEMU crash) and possibly execute arbitrary code via crafted legacy mode packets.
Affected packages (3)
- Debian/qemu-kvmfrom 0, < 0.12.5+dfsg-5+squeeze8
- Debian/xenfrom 0, < 4.1.3~rc1+hg-20120614.a9c0a89c08f2-1
- Debian/xen-qemu-dm-4.0from 0, < 4.0.1-2+squeeze1