An out-of-bounds read access issue was found in the ATAPI Emulator of QEMU. It occurs while processing ATAPI read command if logical block address(LBA) is set an invalid value. A guest user may use this flaw to crash the QEMU process on the host resulting in DoS scenario.
An out-of-bounds read access issue was found in the ATAPI Emulator of QEMU. It occurs while processing ATAPI read command if logical block address(LBA) is set an invalid value. A guest user may use this flaw to crash the QEMU process on the host resulting in DoS scenario.
https://www.openwall.com/lists/oss-security/2021/01/18/2 https://bugzilla.redhat.com/show_bug.cgi?id=1917446 https://lists.gnu.org/archive/html/qemu-devel/2021-01/msg04255.html