On 23/05/2016 12:48, P J P wrote: > From: Prasad J Pandit <p...@fedoraproject.org> > > Vmware Paravirtual SCSI emulation uses command descriptors to > process SCSI commands. These descriptors come with their ring > buffers. A guest could set the ring buffer size to an arbitrary > value leading to OOB access issue. Add check to avoid it. > > Reported-by: Li Qiang <liqiang...@360.cn> > Signed-off-by: Prasad J Pandit <p...@fedoraproject.org> > --- > hw/scsi/vmw_pvscsi.c | 24 ++++++++++++++++++++---- > 1 file changed, 20 insertions(+), 4 deletions(-)
Is there a CVE number? Thanks, Paolo
