Qemu · Qemu · CVE-2017-12809
**Name of the Vulnerable Software and Affected Versions**
QEMU (aka Quick Emulator) versions (affected versions not specified)
**Description**
The issue allows local guest OS privileged users to cause a denial of service by flushing an empty CDROM device drive, resulting in a NULL pointer dereference and QEMU process crash. This occurs when QEMU is built with the IDE disk and CD/DVD-ROM Emulator support.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.