CVE-2018-20815

In QEMU 3.1.0, load_device_tree in device_tree.c calls the deprecated load_image function, which has a buffer overflow risk.
Source: NIST
CVE-2018-20815