Nixpkgs security tracker
Untriaged
The process_tx_desc function in hw/net/e1000.c in QEMU before 2.4.0.1 does …
The process_tx_desc function in hw/net/e1000.c in QEMU before 2.4.0.1 does not properly process transmit descriptor data when sending a network packet, which allows attackers to cause a denial of service (infinite loop and guest crash) via unspecified vectors.
References
-
http://www.ubuntu.com/usn/USN-2745-1 x_refsource_MISC
-
http://www.openwall.com/lists/oss-security/2015/09/04/4 x_refsource_MISC
-
http://www.openwall.com/lists/oss-security/2015/09/05/5 x_refsource_MISC
-
https://bugzilla.redhat.com/show_bug.cgi?id=1260076 x_refsource_MISC
-
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg01199.html x_refsource_CONFIRM
-
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg05832.html x_refsource_CONFIRM
-
http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00026.html x_transferredx_refsource_MISC
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168671.h… x_transferredx_refsource_MISC
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168077.h… x_transferredx_refsource_MISC
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168646.h… x_transferredx_refsource_MISC
-
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00005.html x_transferredx_refsource_MISC
-
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00011.html x_transferredx_refsource_MISC
-
-
-
-
-
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg01199.html x_refsource_CONFIRMx_transferred
-
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg05832.html x_refsource_CONFIRMx_transferred
-
https://www.arista.com/en/support/advisories-notices/security-advisories/1188-s… x_transferredx_refsource_MISC
-
http://www.ubuntu.com/usn/USN-2745-1 x_refsource_MISC
-
http://www.openwall.com/lists/oss-security/2015/09/04/4 x_refsource_MISC
-
http://www.openwall.com/lists/oss-security/2015/09/05/5 x_refsource_MISC
-
https://bugzilla.redhat.com/show_bug.cgi?id=1260076 x_refsource_MISC
-
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg01199.html x_refsource_CONFIRM
-
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg05832.html x_refsource_CONFIRM
-
http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00026.html x_transferredx_refsource_MISC
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168671.h… x_transferredx_refsource_MISC
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168077.h… x_transferredx_refsource_MISC
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168646.h… x_transferredx_refsource_MISC
-
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00005.html x_transferredx_refsource_MISC
-
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00011.html x_transferredx_refsource_MISC
-
-
-
-
-
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg01199.html x_refsource_CONFIRMx_transferred
-
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg05832.html x_refsource_CONFIRMx_transferred
-
https://www.arista.com/en/support/advisories-notices/security-advisories/1188-s… x_transferredx_refsource_MISC
-
http://www.ubuntu.com/usn/USN-2745-1 x_refsource_MISC
-
http://www.openwall.com/lists/oss-security/2015/09/04/4 x_refsource_MISC
-
http://www.openwall.com/lists/oss-security/2015/09/05/5 x_refsource_MISC
-
https://bugzilla.redhat.com/show_bug.cgi?id=1260076 x_refsource_MISC
-
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg01199.html x_refsource_CONFIRM
-
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg05832.html x_refsource_CONFIRM
-
http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00026.html x_transferredx_refsource_MISC
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168671.h… x_transferredx_refsource_MISC
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168077.h… x_transferredx_refsource_MISC
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168646.h… x_transferredx_refsource_MISC
-
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00005.html x_transferredx_refsource_MISC
-
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00011.html x_transferredx_refsource_MISC
-
-
-
-
-
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg01199.html x_refsource_CONFIRMx_transferred
-
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg05832.html x_refsource_CONFIRMx_transferred
-
https://www.arista.com/en/support/advisories-notices/security-advisories/1188-s… x_transferredx_refsource_MISC
Affected products
QEMU
- ==before 2.4.0.1
Matching in nixpkgs
pkgs.qemu
Generic and open source machine emulator and virtualizer
pkgs.qemu_kvm
Generic and open source machine emulator and virtualizer
pkgs.qemu_xen
Generic and open source machine emulator and virtualizer
pkgs.qemu-user
QEMU User space emulator - launch executables compiled for one CPU on another CPU
pkgs.qemu_full
Generic and open source machine emulator and virtualizer
pkgs.qemu_test
Generic and open source machine emulator and virtualizer
pkgs.qemu-utils
Generic and open source machine emulator and virtualizer
pkgs.canokey-qemu
CanoKey QEMU Virt Card
pkgs.ubootQemuX86
Boot loader for embedded systems
-
nixos-unstable x86_defconfig-2025.10
- nixpkgs-unstable x86_defconfig-2025.10
- nixos-unstable-small x86_defconfig-2025.10
-
nixos-25.11 x86_defconfig-2025.10
- nixos-25.11-small x86_defconfig-2025.10
- nixpkgs-25.11-darwin x86_defconfig-2025.10
pkgs.ubootQemuX86_64
Boot loader for embedded systems
-
nixos-unstable x86_64_defconfig-2025.10
- nixpkgs-unstable x86_64_defconfig-2025.10
- nixos-unstable-small x86_64_defconfig-2025.10
-
nixos-25.11 x86_64_defconfig-2025.10
- nixos-25.11-small x86_64_defconfig-2025.10
- nixpkgs-25.11-darwin x86_64_defconfig-2025.10
pkgs.ubootQemuAarch64
Boot loader for embedded systems
-
nixos-unstable qemu_arm64_defconfig-2025.10
- nixpkgs-unstable qemu_arm64_defconfig-2025.10
- nixos-unstable-small qemu_arm64_defconfig-2025.10
-
nixos-25.11 qemu_arm64_defconfig-2025.10
- nixos-25.11-small qemu_arm64_defconfig-2025.10
- nixpkgs-25.11-darwin qemu_arm64_defconfig-2025.10
pkgs.qemu-python-utils
Python tooling used by the QEMU project to build, configure, and test QEMU
pkgs.armTrustedFirmwareQemu
Reference implementation of secure world software for ARMv8-A
pkgs.python312Packages.qemu
Python tooling used by the QEMU project to build, configure, and test QEMU
pkgs.python313Packages.qemu
Python tooling used by the QEMU project to build, configure, and test QEMU
pkgs.python314Packages.qemu
Python tooling used by the QEMU project to build, configure, and test QEMU
pkgs.python312Packages.qemu-qmp
Asyncio library for communicating with QEMU Monitor Protocol (“QMP”) servers
pkgs.python313Packages.qemu-qmp
Asyncio library for communicating with QEMU Monitor Protocol (“QMP”) servers
pkgs.python314Packages.qemu-qmp
Asyncio library for communicating with QEMU Monitor Protocol (“QMP”) servers
Package maintainers
-
@lopsided98 Ben Wolsieffer <benwolsieffer@gmail.com>
-
@oxalica oxalica <oxalicc@pm.me>
-
@DavHau David Hauer <d.hauer.it@gmail.com>
-
@devplayer0 Jack O'Sullivan <dev@nul.ie>
-
@alyssais Alyssa Ross <hi@alyssa.is>
-
@SigmaSquadron Fernando Rodrigues <alpha@sigmasquadron.net>
-
@CertainLach Yaroslav Bolyukin <iam@lach.pw>
-
@hehongbo Hongbo
-
@bartsch Daniel Martin <consume.noise@gmail.com>
-
@dezgeg Tuomas Tynkkynen <tuomas.tynkkynen@iki.fi>
-
@brianmcgillion Brian McGillion <bmg.avoin@gmail.com>