First Last Prev Next    This bug is not in your last search results.
Bug 997860 - (CVE-2016-7157) VUL-0: CVE-2016-7157: qemu: scsi: mptsas: invalid memory access while building configuration pages
(CVE-2016-7157)
VUL-0: CVE-2016-7157: qemu: scsi: mptsas: invalid memory access while buildi...
Status: RESOLVED FIXED
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P3 - Medium : Minor
: ---
Assigned To: Bruce Rogers
Security Team bot
https://smash.suse.de/issue/172391/
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2016-09-08 09:27 UTC by Victor Pereira
Modified: 2017-03-07 22:53 UTC (History)
3 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Victor Pereira 2016-09-08 09:27:32 UTC 
rh#1373504

Quick emulator(Qemu) built with the LSI SAS1068 Host Bus emulation support,
is vulnerable to an invalid memory access issue. It could occur while building
configuration page headers in 'mptsas_config_manufacturing_1'.

A privileged user inside guest could use this flaw to crash the Qemu process
instance on the host resulting in DoS.

Upstream patch:
---------------
  -> https://lists.gnu.org/archive/html/qemu-devel/2016-08/msg04295.html
  -> https://lists.gnu.org/archive/html/qemu-devel/2016-08/msg04296.html



References:
https://bugzilla.redhat.com/show_bug.cgi?id=1373504
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7157
http://seclists.org/oss-sec/2016/q3/430
Comment 1 Swamp Workflow Management 2016-09-08 22:01:13 UTC 
bugbot adjusting priority
Comment 3 Bruce Rogers 2017-03-07 22:53:00 UTC 
Fixed.
First Last Prev Next    This bug is not in your last search results.