{"id":"CVE-2020-25723","details":"A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A malicious privileged user within the guest may abuse this flaw to send bogus USB requests and crash the QEMU process on the host, resulting in a denial of service.","modified":"2026-02-05T06:43:55.033078Z","published":"2020-12-02T01:15:12Z","related":["ALSA-2021:1762","SUSE-SU-2020:14557-1","SUSE-SU-2021:1240-1","SUSE-SU-2021:1241-1","SUSE-SU-2021:1242-1","SUSE-SU-2021:1243-1","SUSE-SU-2021:1244-1","SUSE-SU-2021:1245-1","SUSE-SU-2021:1305-1","SUSE-SU-2021:14704-1","SUSE-SU-2021:14706-1","SUSE-SU-2021:1829-1","SUSE-SU-2021:1837-1","SUSE-SU-2021:1893-1","SUSE-SU-2021:1894-1","SUSE-SU-2021:1895-1","SUSE-SU-2021:1918-1","SUSE-SU-2021:1942-1","SUSE-SU-2021:1947-1","openSUSE-SU-2021:0600-1","openSUSE-SU-2021:1043-1","openSUSE-SU-2021:1942-1","openSUSE-SU-2024:11287-1"],"references":[{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2020/12/22/1"},{"type":"ADVISORY","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1898579"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2022/09/msg00008.html"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20201218-0004/"},{"type":"ARTICLE","url":"http://www.openwall.com/lists/oss-security/2020/12/22/1"},{"type":"ARTICLE","url":"https://lists.debian.org/debian-lts-announce/2022/09/msg00008.html"},{"type":"FIX","url":"http://www.openwall.com/lists/oss-security/2020/12/22/1"},{"type":"FIX","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1898579"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1898579"}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L"}]}