CVE-2016-7423

Name of the Vulnerable Software and Affected Versions QEMU (affected versions not specified)

Description The issue allows local guest OS administrators to cause a denial of service, resulting in an out-of-bounds write and QEMU process crash. This is achieved through vectors involving MPTSASRequest objects, specifically in the mptsas process scsi io request function when QEMU is built with LSI SAS1068 Host Bus emulation support.

Recommendations At the moment, there is no information about a newer version that contains a fix for this issue.