Qemu · Qemu · CVE-2013-4377
**Name of the Vulnerable Software and Affected Versions**
Qemu versions 1.4.0 through 1.6.0
**Description**
A use-after-free issue in the virtio-pci implementation allows local users to cause a denial of service by "hot-unplugging" a virtio device, resulting in a daemon crash.
**Recommendations**
For Qemu versions 1.4.0 through 1.6.0, consider disabling the hot-unplug feature for virtio devices until a patch is available.