CVE-2025-14876

A flaw was found in the virtio-crypto device of QEMU. A malicious guest operating system can exploit a missing length limit in the AKCIPHER path, leading to uncontrolled memory allocation. This can result in a denial of service (DoS) on the host system by causing the QEMU process to terminate unexpectedly.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/14xxx/CVE-2025-14876.json",
    "cwe_ids": [
        "CWE-770"
    ],
    "cna_assigner": "fedora"
}

References

Affected packages

Git / gitlab.com/qemu-project/qemu

Affected ranges

Type

GIT

Repo

https://gitlab.com/qemu-project/qemu

Events

Introduced

621da7789083b80d6f1ff1c0fb499334007b4f51

Last affected

698104725efad4b29079d857dfdebbd804e34c99

Database specific

{
    "extracted_events": [
        {
            "introduced": "7.1.0"
        },
        {
            "last_affected": "10.2.0"
        }
    ],
    "source": "AFFECTED_FIELD"
}

Affected versions

v10.*

v10.0.0

v10.0.0-rc0

v10.0.0-rc1

v10.0.0-rc2

v10.0.0-rc3

v10.0.0-rc4

v10.1.0

v10.1.0-rc0

v10.1.0-rc1

v10.1.0-rc2

v10.1.0-rc3

v10.1.0-rc4

v10.2.0

v10.2.0-rc1

v10.2.0-rc2

v10.2.0-rc3

v10.2.0-rc4

v7.*

v7.1.0

v7.2.0

v7.2.0-rc0

v7.2.0-rc1

v7.2.0-rc2

v7.2.0-rc3

v7.2.0-rc4

v8.*

v8.0.0

v8.0.0-rc0

v8.0.0-rc1

v8.0.0-rc2

v8.0.0-rc3

v8.0.0-rc4

v8.1.0

v8.1.0-rc0

v8.1.0-rc1

v8.1.0-rc2

v8.1.0-rc3

v8.1.0-rc4

v8.2.0

v8.2.0-rc0

v8.2.0-rc1

v8.2.0-rc2

v8.2.0-rc3

v8.2.0-rc4

v9.*

v9.0.0

v9.0.0-rc0

v9.0.0-rc1

v9.0.0-rc2

v9.0.0-rc3

v9.0.0-rc4

v9.1.0

v9.1.0-rc0

v9.1.0-rc1

v9.1.0-rc2

v9.1.0-rc3

v9.1.0-rc4

v9.2.0

v9.2.0-rc0

v9.2.0-rc1

v9.2.0-rc2

v9.2.0-rc3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-14876.json"