Qemu · Qemu · CVE-2020-24165
**Name of the Vulnerable Software and Affected Versions**
QEMU version 4.2.0
**Description**
An issue was discovered in the TCG Accelerator component of QEMU, related to the use of memory after it has been freed. This issue allows local attackers to execute arbitrary code, escalate privileges, and cause a denial of service (DoS). Note that this is disputed as a bug and not a valid security issue by multiple third parties.
**Recommendations**
For QEMU version 4.2.0, at the moment, there is no information about a newer version that contains a fix for this issue.