CVE-2016-4964

Published: Dec 10, 2016

Modified: Aug 6, 2024

PUBLISHED

Description

The mptsas_fetch_requests function in hw/scsi/mptsas.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop, and CPU consumption or QEMU process crash) via vectors involving s->state.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20160524 Re: CVE Request: Qemu: scsi: mptsas infinite loop in mptsas_fetch_requests

mailing-list

x_refsource_MLIST

[qemu-devel] 20160524 [PATCH] scsi: mptsas: infinite loop while fetching requests

mailing-list

x_refsource_MLIST

http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=06630554ccbdd25780aa03c3548aaff1eb56dffd

x_refsource_CONFIRM

[oss-security] 20160524 CVE Request: Qemu: scsi: mptsas infinite loop in mptsas_fetch_requests

mailing-list

x_refsource_MLIST

GLSA-201609-01

vendor-advisory

x_refsource_GENTOO

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-4964

Description

Affected Products

References