Memory leak in the virgl_cmd_resource_unref function in hw/display/virtio-gpu-3d.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (host memory consumption) via a large number of VIRTIO_GPU_CMD_RESOURCE_UNREF commands sent without detaching the backing storage beforehand.
The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Qemu | Qemu | * | 2.8.1.1 (including) |
Qemu | Ubuntu | esm-infra/xenial | * |
Qemu | Ubuntu | upstream | * |
Qemu | Ubuntu | xenial | * |
Qemu | Ubuntu | yakkety | * |
Qemu-kvm | Ubuntu | upstream | * |