CVE-2016-5238

2016-06-14T14:59:00
ID CVE-2016-5238
Type cve
Reporter cve@mitre.org
Modified 2018-12-01T11:29:00

Description

The get_cmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) via vectors related to reading from the information transfer buffer in non-DMA mode.