Memory Leak in megasas_handle_dcmd Function in QEMU Allows DoS via MFI Commands

Memory Leak in megasas_handle_dcmd Function in QEMU Allows DoS via MFI Commands

CVE-2017-5856 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Memory leak in the megasas_handle_dcmd function in hw/scsi/megasas.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption) via MegaRAID Firmware Interface (MFI) commands with the sglist size set to a value over 2 Gb.

Learn more about our User Device Pen Test.