CVE-2020-27617 Information

Description

eth_get_gso_type in net/eth.c in QEMU 4.2.1 allows guest OS users to trigger an assertion failure. A guest can crash the QEMU process via packet data that lacks a valid Layer 3 protocol.

Reference

http://www.openwall.com/lists/oss-security/2020/11/02/1 https://lists.nongnu.org/archive/html/qemu-devel/2020-10/msg05731.html