Quick Emulator(Qemu) built with the MegaRAID SAS 8708EM2 Host Bus Adapter emulation support is vulnerable to a null pointer dereference issue. It could occur while processing megasas commands via megasas_command_complete(). A privileged user inside guest could use this flaw to crash the Qemu process on the host resulting in DoS. Upstream patch: --------------- -> https://lists.gnu.org/archive/html/qemu-devel/2017-06/msg01313.html -> https://lists.gnu.org/archive/html/qemu-devel/2017-06/msg01309.html Reference: ---------- -> http://www.openwall.com/lists/oss-security/2017/06/08/1
Acknowledgments: Name: Zhangyanyu
Created qemu tracking bugs for this issue: Affects: fedora-all [bug 1459478]
Patches at https://lists.gnu.org/archive/html/qemu-devel/2017-06/msg01308.html