Buffer overflow in hw/scsi-disk.c in the SCSI subsystem in QEMU before 0.15.2, as used by Xen, might allow local guest users with permission to access the CD-ROM to cause a denial of service (guest crash) via a crafted SAI READ CAPACITY SCSI command. NOTE: this is only a vulnerability when root has manually modified certain permissions or ACLs.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2014-04-01T01:00:00

Updated: 2024-08-06T23:29:56.718Z

Reserved: 2011-08-30T00:00:00

Link: CVE-2011-3346

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2014-04-01T06:35:52.373

Modified: 2024-11-21T01:30:18.453

Link: CVE-2011-3346

cve-icon Redhat

Severity : Moderate

Publid Date: 2011-09-07T00:00:00Z

Links: CVE-2011-3346 - Bugzilla