Re: [PATCH] hw/scsi/megasas: Fix possible out-of-bounds array access in tracepoints

On 15/06/20 09:26, Thomas Huth wrote: > Some tracepoints in megasas.c use a guest-controlled value as an index > into the mfi_frame_desc[] array. Thus a malicious guest could cause an > out-of-bounds error here. Fortunately, the impact is very low since this > can only happen when the corresponding

Re: [PATCH] hw/scsi/megasas: Fix possible out-of-bounds array access in tracepoints

On 6/15/20 9:26 AM, Thomas Huth wrote: > Some tracepoints in megasas.c use a guest-controlled value as an index > into the mfi_frame_desc[] array. Thus a malicious guest could cause an > out-of-bounds error here. Fortunately, the impact is very low since this > can only happen when the correspondin

[PATCH] hw/scsi/megasas: Fix possible out-of-bounds array access in tracepoints

Some tracepoints in megasas.c use a guest-controlled value as an index into the mfi_frame_desc[] array. Thus a malicious guest could cause an out-of-bounds error here. Fortunately, the impact is very low since this can only happen when the corresponding tracepoints have been enabled before, but the