An off-by-one error was found in the SCSI device emulation in QEMU. It could occur while processing MODE SELECT commands in mode_sense_page() if the 'page' argument was set to MODE_PAGE_ALLS (0x3f). A malicious guest could use this flaw to potentially crash QEMU, resulting in a denial of service condition.
| Product | Vendor | Version |
|---|---|---|
| QEMU | n/a | < dc7ce14f00bcd50641f2110b7a32aa6552e0780f |