QEMU is prone to an insecure-password vulnerability.
Attackers may exploit this issue to make brute-force attacks against passwords that are weaker than expected.
QEMU 9.1 is vulnerable; other versions may also be affected.
Reproducible: Didn't try
Removed from tree.
Added to existing GLSA request.
Going on 5 years here guys. This has been out of the tree for a while as well.