An out of bounds memory access issue was found in the LSI53C895A SCSI Host Bus Adapter emulation while writing a message in lsi_do_msgin. It could occur during migration if the 'msg_len' field has an invalid value. A user/process could use this flaw to crash the Qemu process resulting in DoS.
Name: Deja vu Security (dejavusecurity.com)
Created qemu tracking bugs for this issue:
Affects: fedora-all [bug 1644977]
Created xen tracking bugs for this issue:
Affects: fedora-all [bug 1644978]