Enviar #7350: CVE-2021-3392 - Denial of Service in QEMU virtualisationinformación

TítuloCVE-2021-3392 - Denial of Service in QEMU virtualisation
DescripciónWhile processing SCSI i/o requests in mptsas_process_scsi_io_request(), the Megaraid emulator appends new MPTSASRequest object 'req' to the 's->pending' queue. In case of an error, this same object gets dequeued in mptsas_free_request() only if SCSIRequest object 'req->sreq' is initialised. This may lead to a use-after-free issue. Unconditionally dequeue 'req' object from 's->pending' to avoid it. Source: https://bugs.launchpad.net/qemu/+bug/1914236 https://lists.gnu.org/archive/html/qemu-devel/2021-02/msg00488.html
Fuente⚠️ https://bugs.launchpad.net/qemu/+bug/1914236
Usuario
 CSieberg (UID 13359)
Sumisión2021-02-08 11:47 (hace 5 años)
Moderación2021-02-08 13:08 (1 hour later)
EstadoAceptado
Entrada de VulDB169365 [QEMU 5.2.0 SCSI IO Request mptsas.c mptsas_process_scsi_io_request desbordamiento de búfer]
Puntos20

AnteriorVisión De ConjuntoPróximo

Might our Artificial Intelligence support you?

Check our Alexa App!