diff options
author | Adrian Dudau <adrian.dudau@enea.com> | 2016-11-03 14:18:01 +0100 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2017-05-18 13:13:34 +0100 |
commit | 3d6b4fd6bc4338b139ebcaf51b67c56cc97ba2ed (patch) | |
tree | e16477d5fd27504c6db083d8ea4d1ef185d71b84 /meta/recipes-graphics | |
parent | 1bc071172236ea020cac9db96e33de81950a15ff (diff) | |
download | openembedded-core-contrib-3d6b4fd6bc4338b139ebcaf51b67c56cc97ba2ed.tar.gz |
qemu: Security fix CVE-2016-4952
affects qemu < 2.7.0
Quick Emulator(Qemu) built with the VMWARE PVSCSI paravirtual SCSI bus
emulation support is vulnerable to an OOB r/w access issue. It could
occur while processing SCSI commands 'PVSCSI_CMD_SETUP_RINGS' or
'PVSCSI_CMD_SETUP_MSG_RING'.
A privileged user inside guest could use this flaw to crash the Qemu
process resulting in DoS.
References:
----------
http://www.openwall.com/lists/oss-security/2016/05/23/1
Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Diffstat (limited to 'meta/recipes-graphics')
0 files changed, 0 insertions, 0 deletions