Heap-based buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU allows guest OS administrators to cause a denial of service (instance crash) or possibly execute arbitrary code via a series of packets in loopback mode.
| Product | Vendor | Version |
|---|---|---|
| n/a | n/a | >= 2.4.0, < 2.4.2 |