CVE-2016-7421 (retired)

Priority
Description
The pvscsi_ring_pop_req_descr function in hw/scsi/vmw_pvscsi.c in QEMU (aka
Quick Emulator) allows local guest OS administrators to cause a denial of
service (infinite loop and QEMU process crash) by leveraging failure to
limit process IO loop to the ring size.
Package
Source: qemu (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):released (2.0.0+dfsg-2ubuntu1.30)
Ubuntu 16.04 LTS (Xenial Xerus):released (1:2.5+dfsg-5ubuntu10.6)
Patches:
Upstream:http://git.qemu.org/?p=qemu.git;a=commit;h=d251157ac1928191af851d199a9ff255d330bec9
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):DNE
More Information

Updated: 2019-03-26 12:22:47 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)