Buffer overflow in the usb_host_handle_control function in the USB passthrough handling implementation in usb-linux.c in QEMU before 0.11.1 allows guest OS users to cause a denial of service (guest OS crash or hang) or possibly execute arbitrary code on the host OS via a crafted USB packet.
Max CVSS
7.2
EPSS Score
0.11%
Published
2010-02-12
Updated
2023-02-13
1 vulnerabilities found