CVE-2019-12068

Name of the Vulnerable Software and Affected Versions QEMU versions 1:4.1-1, 1:2.1+dfsg-12+deb8u6, 1:2.8+dfsg-6+deb9u8, 1:3.1+dfsg-8~deb10u1, 1:3.1+dfsg-8+deb10u2

Description The issue is related to an infinite loop in the LSI scsi adapter emulator. When executing a script in lsi execute script(), the emulator advances the s->dsp index to read the next opcode, which can lead to an infinite loop if the next opcode is empty. This can cause a denial of service.

Recommendations For QEMU versions 1:4.1-1, 1:2.1+dfsg-12+deb8u6, 1:2.8+dfsg-6+deb9u8, 1:3.1+dfsg-8~deb10u1, 1:3.1+dfsg-8+deb10u2, update to version 1:2.1+dfsg-12+deb8u12 or later to resolve the issue. As a temporary workaround, consider modifying the loop exit condition in lsi execute script() to cover no-op opcodes and prevent the infinite loop.