CVE-2026-0665
Off-by-One Heap Overflow in QEMU KVM Xen Causes DoS
Publication date: 2026-02-18
Last updated on: 2026-02-18
Assigner: Fedora Project
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| qemu | qemu | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-787 | The product writes data past the end, or before the beginning, of the intended buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
[{'type': 'paragraph', 'content': "CVE-2026-0665 is a medium severity security vulnerability caused by an off-by-one error in QEMU's KVM Xen guest support, specifically in the PHYSDEVOP_map_pirq hypercall interface."}, {'type': 'paragraph', 'content': 'This flaw allows a malicious guest virtual machine to trigger out-of-bounds heap accesses in the QEMU process by exploiting the emulated Xen physdev hypercall interface.'}, {'type': 'paragraph', 'content': 'Such out-of-bounds accesses can lead to denial of service or potential memory corruption.'}] [1]
How can this vulnerability impact me? :
If exploited, this vulnerability can cause denial of service by crashing the QEMU process.
There is also a risk of memory corruption, which could potentially be leveraged for further attacks or system instability.
The vulnerability affects all hardware running Linux operating systems with QEMU-KVM when using Xen guest support.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
I don't know
What immediate steps should I take to mitigate this vulnerability?
I don't know