FreeBSD : qemu -- denial of service vulnerability in MegaRAID SAS HBA emulation (b3f9f8ef-b1bb-11e5-9728-002590263bf5)
Low Nessus Plugin ID 87703
The remote FreeBSD host is missing one or more security-related updates.
Prasad J Pandit, Red Hat Product Security Team, reports : Qemu emulator built with the SCSI MegaRAID SAS HBA emulation support is vulnerable to a stack-based buffer overflow issue. It occurs while processing the SCSI controller's CTRL_GET_INFO command. A privileged guest user could use this flaw to crash the Qemu process instance resulting in DoS.