Memory leak in the v9fs_device_unrealize_common function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local privileged guest OS users to cause a denial of service (host memory consumption and possibly QEMU process crash) via vectors involving the order of resource cleanup.
https://lists.gnu.org/archive/html/qemu-devel/2016-11/msg03278.html
https://security.gentoo.org/glsa/201701-49