+-- On Mon, 23 May 2016, Paolo Bonzini wrote --+
| Is there a CVE number?
Yes, CVE-2016-4952:
-> https://bugzilla.redhat.com/show_bug.cgi?id=1334384
Thank you.
--
Prasad J Pandit / Red Hat Product Security Team
47AF CE69 3A90 54AA 9045 1053 DD13 3D32 FE5B 041F
On 23/05/2016 12:48, P J P wrote:
> From: Prasad J Pandit
>
> Vmware Paravirtual SCSI emulation uses command descriptors to
> process SCSI commands. These descriptors come with their ring
> buffers. A guest could set the ring buffer size to an arbitrary
> value leading to OOB access issue. Add ch
Reviewed-by: Dmitry Fleytman
> On 23 May 2016, at 14:16 PM, Shmulik Ladkani
> wrote:
>
> Hi,
>
> On Mon, 23 May 2016 16:18:05 +0530, ppan...@redhat.com wrote:
>> From: Prasad J Pandit
>>
>> Vmware Paravirtual SCSI emulation uses command descriptors to
>> process SCSI commands. These descri
Hi,
On Mon, 23 May 2016 16:18:05 +0530, ppan...@redhat.com wrote:
> From: Prasad J Pandit
>
> Vmware Paravirtual SCSI emulation uses command descriptors to
> process SCSI commands. These descriptors come with their ring
> buffers. A guest could set the ring buffer size to an arbitrary
> value le
From: Prasad J Pandit
Vmware Paravirtual SCSI emulation uses command descriptors to
process SCSI commands. These descriptors come with their ring
buffers. A guest could set the ring buffer size to an arbitrary
value leading to OOB access issue. Add check to avoid it.
Reported-by: Li Qiang
Signe
